[TOMEE-4066] Update jackson-databind to mitigate CVE-2022-42004 and CVE-2022-42003 - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Task
Status: Resolved
Priority: Major
Resolution: Fixed
Affects Version/s: 8.0.12
Fix Version/s: 8.0.13
Component/s: TomEE Core Server
Labels:
- CVE

Description

Update jackson-databind to mitigate CVE-2022-42004 and CVE-2022-42003

https://nvd.nist.gov/vuln/detail/CVE-2022-42003

https://nvd.nist.gov/vuln/detail/CVE-2022-42004

Attachments

Issue Links

relates to

TOMEE-4067 Jackson 2.14.0-rc1

Resolved

Activity

People

Assignee:: Unassigned

Reporter:: RAJU THANNEERU

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Dates

Created:: 06/Oct/22 08:05

Updated:: 06/Jan/23 12:12

Resolved:: 06/Jan/23 12:12