[SPARK-38665] upgrade jackson due to CVE-2020-36518 - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Bug
Status: Resolved
Priority: Major
Resolution: Fixed
Affects Version/s: 3.2.1
Fix Version/s: 3.3.0
Component/s: Spark Core
Labels:
None

Description

https://github.com/FasterXML/jackson-databind/issues/2816
only jackson-databind has a 2.13.2.1 release
other jackson jars should stay at 2.13.2

Attachments

Issue Links

links to

[Github] Pull Request #35981 (pan3793)

Activity

People

Assignee:: Cheng Pan

Reporter:: PJ Fanning

Votes:: 0 Vote for this issue

Watchers:: 3 Start watching this issue

Dates

Created:: 26/Mar/22 14:52

Updated:: 24/Nov/22 00:38

Resolved:: 27/Mar/22 17:03