[ZOOKEEPER-3518] owasp check flagging jackson-databind 2.9.9.1 - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Bug
Status: Closed
Priority: Blocker
Resolution: Fixed
Affects Version/s: 3.6.0, 3.5.5
Fix Version/s: 3.6.0, 3.5.6
Component/s: security
Labels:
- pull-request-available

Description

owasp check is flagging jackson-databind 2.9.9.1 - upgrade to 2.9.9.3

CVE-2019-14379, CVE-2019-14439, CVE-2019-12384

Attachments

Issue Links

links to

GitHub Pull Request #1061

Activity

People

Assignee:: Patrick D. Hunt

Reporter:: Patrick D. Hunt

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Dates

Created:: 25/Aug/19 01:50

Updated:: 16/Oct/19 18:58

Resolved:: 25/Aug/19 19:34

Time Tracking

Estimated:

Not Specified

Remaining:

0h

Logged:

0.5h