[
https://issues.apache.org/jira/browse/TINKERPOP-2068?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16668634#comment-16668634
]
ASF GitHub Bot commented on TINKERPOP-2068:
-------------------------------------------
robertdale opened a new pull request #979: TINKERPOP-2068 bump jackson-databind
to 2.9.7 [tp32]
URL: https://github.com/apache/tinkerpop/pull/979
https://issues.apache.org/jira/browse/TINKERPOP-2068
security fix
`docker/build.sh -i -t -n` SUCCESS
VOTE +1
----------------------------------------------------------------
This is an automated message from the Apache Git Service.
To respond to the message, please log on GitHub and use the
URL above to go to the specific comment.
For queries about this service, please contact Infrastructure at:
[email protected]
> Bump Jackson Databind 2.9.7
> ---------------------------
>
> Key: TINKERPOP-2068
> URL: https://issues.apache.org/jira/browse/TINKERPOP-2068
> Project: TinkerPop
> Issue Type: Improvement
> Components: io
> Affects Versions: 3.3.4, 3.2.10
> Reporter: Robert Dale
> Assignee: Robert Dale
> Priority: Major
> Labels: security
>
> Jackson Databind vulnerability flagged by:
> * https://app.snyk.io/vuln/SNYK-JAVA-COMFASTERXMLJACKSONCORE-72451
> * [https://app.snyk.io/vuln/SNYK-JAVA-COMFASTERXMLJACKSONCORE-72449]
> * [https://app.snyk.io/vuln/SNYK-JAVA-COMFASTERXMLJACKSONCORE-72450]
> * https://app.snyk.io/vuln/SNYK-JAVA-COMFASTERXMLJACKSONCORE-72448
> Jackson Databind Release Notes:
> [https://github.com/FasterXML/jackson/wiki/Jackson-Release-2.9.7]
>
--
This message was sent by Atlassian JIRA
(v7.6.3#76005)
