[
https://issues.apache.org/jira/browse/CASSANDRA-20848?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=18015975#comment-18015975
]
Stefan Miklosovic edited comment on CASSANDRA-20848 at 8/25/25 2:32 PM:
------------------------------------------------------------------------
[CASSANDRA-20848-20849-4.1|https://github.com/instaclustr/cassandra/tree/CASSANDRA-20848-20849-4.1]
{noformat}
java11_pre-commit_tests
✓ j11_build 2m 47s
✓ j11_cqlsh_dtests_py311 5m 40s
✓ j11_cqlshlib_cython_tests 11m 20s
✓ j11_cqlshlib_tests 7m 33s
✓ j11_dtests_vnode 40m 12s
✓ j11_jvm_dtests 14m 25s
✓ j11_jvm_dtests_vnode 12m 5s
✓ j11_unit_tests 9m 12s
✕ j11_cqlsh_dtests_py3 6m 21s
cql_tracing_test.TestCqlTracing test_tracing_default_impl
cql_tracing_test.TestCqlTracing test_tracing_unknown_impl
✕ j11_cqlsh_dtests_py311_vnode 6m 6s
cql_tracing_test.TestCqlTracing test_tracing_default_impl
✕ j11_cqlsh_dtests_py38 6m 2s
cql_tracing_test.TestCqlTracing test_tracing_simple
✕ j11_cqlsh_dtests_py38_vnode 5m 36s
cql_tracing_test.TestCqlTracing test_tracing_default_impl
cql_tracing_test.TestCqlTracing test_tracing_simple
✕ j11_cqlsh_dtests_py3_vnode 5m 42s
cql_tracing_test.TestCqlTracing test_tracing_default_impl
cql_tracing_test.TestCqlTracing test_tracing_simple
cql_tracing_test.TestCqlTracing test_tracing_unknown_impl
✕ j11_dtests 58m 44s
refresh_test.TestRefresh test_refresh_deadlock_startup
java11_separate_tests
java8_pre-commit_tests
java8_separate_tests
{noformat}
[java11_pre-commit_tests|https://app.circleci.com/pipelines/github/instaclustr/cassandra/5979/workflows/3ff26147-f340-4a0e-9e7b-b66d0ca54961]
not sure what's up with tracing, it does not fail locally, it is unrelated
anyway.
[CASSANDRA-20848-20849-5.0|https://github.com/instaclustr/cassandra/tree/CASSANDRA-20848-20849-5.0]
{noformat}
java17_pre-commit_tests
✓ j17_build 8m 52s
✓ j17_cqlsh_dtests_py311 6m 1s
✓ j17_cqlsh_dtests_py311_vnode 6m 25s
✓ j17_cqlsh_dtests_py38 5m 54s
✓ j17_cqlsh_dtests_py38_vnode 6m 37s
✓ j17_cqlshlib_cython_tests 7m 45s
✓ j17_cqlshlib_tests 10m 10s
✓ j17_dtests_vnode 41m 59s
✓ j17_jvm_dtests 21m 3s
✓ j17_jvm_dtests_latest_vnode 19m 5s
✓ j17_unit_tests 14m 53s
✓ j17_utests_latest 16m 28s
✓ j17_utests_oa 17m 24s
✕ j17_dtests 35m 55s
refresh_test.TestRefresh test_refresh_deadlock_startup
materialized_views_test.TestMaterializedViewsConsistency
test_multi_partition_consistent_reads_after_write
✕ j17_dtests_latest 46m 18s
bootstrap_test.TestBootstrap test_read_from_bootstrapped_node
java17_separate_tests
java11_pre-commit_tests
java11_separate_tests
{noformat}
was (Author: smiklosovic):
[CASSANDRA-20848-20849-4.1|https://github.com/instaclustr/cassandra/tree/CASSANDRA-20848-20849-4.1]
{noformat}
java11_pre-commit_tests
✓ j11_build 2m 47s
✓ j11_cqlsh_dtests_py311 5m 40s
✓ j11_cqlshlib_cython_tests 11m 20s
✓ j11_cqlshlib_tests 7m 33s
✓ j11_dtests_vnode 40m 12s
✓ j11_jvm_dtests 14m 25s
✓ j11_jvm_dtests_vnode 12m 5s
✓ j11_unit_tests 9m 12s
✕ j11_cqlsh_dtests_py3 6m 21s
cql_tracing_test.TestCqlTracing test_tracing_default_impl
cql_tracing_test.TestCqlTracing test_tracing_unknown_impl
✕ j11_cqlsh_dtests_py311_vnode 6m 6s
cql_tracing_test.TestCqlTracing test_tracing_default_impl
✕ j11_cqlsh_dtests_py38 6m 2s
cql_tracing_test.TestCqlTracing test_tracing_simple
✕ j11_cqlsh_dtests_py38_vnode 5m 36s
cql_tracing_test.TestCqlTracing test_tracing_default_impl
cql_tracing_test.TestCqlTracing test_tracing_simple
✕ j11_cqlsh_dtests_py3_vnode 5m 42s
cql_tracing_test.TestCqlTracing test_tracing_default_impl
cql_tracing_test.TestCqlTracing test_tracing_simple
cql_tracing_test.TestCqlTracing test_tracing_unknown_impl
✕ j11_dtests 58m 44s
refresh_test.TestRefresh test_refresh_deadlock_startup
java11_separate_tests
java8_pre-commit_tests
java8_separate_tests
{noformat}
[java11_pre-commit_tests|https://app.circleci.com/pipelines/github/instaclustr/cassandra/5979/workflows/3ff26147-f340-4a0e-9e7b-b66d0ca54961]
not sure what's up with tracing, it does not fail locally, it is unrelated
anyway.
> jackson-core vulnerability: CVE-2025-52999
> ------------------------------------------
>
> Key: CASSANDRA-20848
> URL: https://issues.apache.org/jira/browse/CASSANDRA-20848
> Project: Apache Cassandra
> Issue Type: Bug
> Components: Dependencies
> Reporter: ANSHUL SAINI
> Assignee: Stefan Miklosovic
> Priority: Normal
> Fix For: 4.0.x, 4.1.x, 5.0.x, 5.x
>
> Time Spent: 40m
> Remaining Estimate: 0h
>
> https://nvd.nist.gov/vuln/detail/CVE-2025-52999
> jackson-core contains core low-level incremental ("streaming") parser and
> generator abstractions used by Jackson Data Processor. In versions prior to
> 2.15.0, if a user parses an input file and it has deeply nested data, Jackson
> could end up throwing a StackoverflowError if the depth is particularly large.
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
