Uploaded image for project: 'Tika'
  1. Tika
  2. TIKA-3712

update jackson-databind to 2.13.2.1 or greater in tika jars

    XMLWordPrintableJSON

Details

    • Bug
    • Status: Resolved
    • Critical
    • Resolution: Fixed
    • 2.3.0
    • 2.4.1
    • tika-eval
    • None

    Description

      com.fasterxml.jackson.core_jackson-databind_2.13.1 in tika eval app is of version 2.13.1 which has CVE-2020-36518 vulnerability.

      jackson databind jars needs to be updated to 2.13.2.1 or greater.

      Attachments

        Issue Links

          relates to

          Task - A task that needs to be done. TIKA-3675 General upgrades for 2.4.0

          • Minor - Minor loss of function, or other problem where easy workaround is present.
          • Resolved

          Activity

            People

              Unassigned Unassigned
              dpramod Dhoka Pramod
              Votes:
              1 Vote for this issue
              Watchers:
              2 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: