[
https://issues.apache.org/jira/browse/NIFI-8061?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
David Borncamp updated NIFI-8061:
---------------------------------
Description: Upgrade {{com.fasterxml.jackson.core:jackson-databind}} in
NiFi's maven poms to version 2.9.10.6. This resolves [CVE
2020-25649|http://cve.mitre.org/cgi-bin/cvename.cgi?name=2020-25649]
[http://cve.mitre.org/cgi-bin/cvename.cgi?name=2020-25649] with this [issue
fixed|https://issues.apache.org/jira/secure/[https://github.com/FasterXML/jackson-databind/issues/2826](https://github.com/FasterXML/jackson-databind/issues/2826].
(was: Upgrade {{com.fasterxml.jackson.core:jackson-databind}} in NiFi's maven
poms to version 2.9.10.6. This resolves [CVE
2020-25649|http://cve.mitre.org/cgi-bin/cvename.cgi?name=2020-25649] with this
[issue
fixed|https://issues.apache.org/jira/secure/[https://github.com/FasterXML/jackson-databind/issues/2826](https://github.com/FasterXML/jackson-databind/issues/2826].)
> Update Jackson Datablind Version
> --------------------------------
>
> Key: NIFI-8061
> URL: https://issues.apache.org/jira/browse/NIFI-8061
> Project: Apache NiFi
> Issue Type: Improvement
> Affects Versions: 1.11.0, 1.12.0, 1.11.1, 1.11.2, 1.11.3, 1.11.4, 1.13.0,
> 1.12.1
> Reporter: David Borncamp
> Priority: Major
> Labels: dependancy, dependencies
> Original Estimate: 4h
> Remaining Estimate: 4h
>
> Upgrade {{com.fasterxml.jackson.core:jackson-databind}} in NiFi's maven poms
> to version 2.9.10.6. This resolves [CVE
> 2020-25649|http://cve.mitre.org/cgi-bin/cvename.cgi?name=2020-25649]
> [http://cve.mitre.org/cgi-bin/cvename.cgi?name=2020-25649] with this [issue
> fixed|https://issues.apache.org/jira/secure/[https://github.com/FasterXML/jackson-databind/issues/2826](https://github.com/FasterXML/jackson-databind/issues/2826].
--
This message was sent by Atlassian Jira
(v8.3.4#803005)
