[jira] [Commented] (TINKERPOP-2068) Bump Jackson Databind 2.9.7

ASF GitHub Bot (JIRA) Tue, 30 Oct 2018 05:25:26 -0700


    [ 
https://issues.apache.org/jira/browse/TINKERPOP-2068?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16668634#comment-16668634
 ]


ASF GitHub Bot commented on TINKERPOP-2068:
-------------------------------------------

robertdale opened a new pull request #979: TINKERPOP-2068 bump jackson-databind 
to 2.9.7 [tp32]
URL: https://github.com/apache/tinkerpop/pull/979
 
 
   https://issues.apache.org/jira/browse/TINKERPOP-2068
   
   security fix
   
   `docker/build.sh -i -t -n` SUCCESS
   
   VOTE +1

----------------------------------------------------------------
This is an automated message from the Apache Git Service.
To respond to the message, please log on GitHub and use the
URL above to go to the specific comment.
 
For queries about this service, please contact Infrastructure at:
us...@infra.apache.org


> Bump Jackson Databind 2.9.7
> ---------------------------
>
>                 Key: TINKERPOP-2068
>                 URL: https://issues.apache.org/jira/browse/TINKERPOP-2068
>             Project: TinkerPop
>          Issue Type: Improvement
>          Components: io
>    Affects Versions: 3.3.4, 3.2.10
>            Reporter: Robert Dale
>            Assignee: Robert Dale
>            Priority: Major
>              Labels: security
>
> Jackson Databind vulnerability flagged by:
>  * https://app.snyk.io/vuln/SNYK-JAVA-COMFASTERXMLJACKSONCORE-72451
>  * [https://app.snyk.io/vuln/SNYK-JAVA-COMFASTERXMLJACKSONCORE-72449]
>  * [https://app.snyk.io/vuln/SNYK-JAVA-COMFASTERXMLJACKSONCORE-72450]
>  * https://app.snyk.io/vuln/SNYK-JAVA-COMFASTERXMLJACKSONCORE-72448
> Jackson Databind Release Notes:  
> [https://github.com/FasterXML/jackson/wiki/Jackson-Release-2.9.7]
>  



--
This message was sent by Atlassian JIRA
(v7.6.3#76005)

[jira] [Commented] (TINKERPOP-2068) Bump Jackson Databind 2.9.7

Reply via email to