[SPARK-30333] Bump jackson-databind to 2.6.7.3 - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Bug
Status: Resolved
Priority: Major
Resolution: Fixed
Affects Version/s: 2.4.4
Fix Version/s: 2.4.5
Component/s: Spark Core
Labels:
None

Description

To fix below CVE

CVE-2018-14718

CVE-2018-14719

CVE-2018-14720

CVE-2018-14721

CVE-2018-19360,

CVE-2018-19361

CVE-2018-19362

Attachments

Issue Links

links to

GitHub Pull Request #26986

GitHub Pull Request #27256

Activity

People

Assignee:: Sandeep Katta

Reporter:: Sandeep Katta

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Dates

Created:: 23/Dec/19 12:02

Updated:: 17/Jan/20 19:01

Resolved:: 24/Dec/19 05:17