[jira] [Updated] (ARROW-1242) [Java] security - upgrade Jackson to mitigate 3 CVE vulnerabilities

Rok Mihevc (Jira) Tue, 10 Jan 2023 23:17:20 -0800


     [ 
https://issues.apache.org/jira/browse/ARROW-1242?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]


Rok Mihevc updated ARROW-1242:
------------------------------
    External issue URL: https://github.com/apache/arrow/issues/17103

> [Java] security - upgrade Jackson to mitigate 3 CVE vulnerabilities
> -------------------------------------------------------------------
>
>                 Key: ARROW-1242
>                 URL: https://issues.apache.org/jira/browse/ARROW-1242
>             Project: Apache Arrow
>          Issue Type: Bug
>          Components: Java
>    Affects Versions: 0.4.1
>            Reporter: Matt Darwin
>            Assignee: Matt Darwin
>            Priority: Major
>             Fix For: 0.6.0
>
>
> please consider upgrading jackson to mitigate its various vulnerabilities in 
> 2.7.1:
> https://cve.mitre.org/cgi-bin/cvekey.cgi?keyword=jackson
> see also
> https://github.com/FasterXML/jackson-databind/issues/1599



--
This message was sent by Atlassian Jira
(v8.20.10#820010)

[jira] [Updated] (ARROW-1242) [Java] security - upgrade Jackson to mitigate 3 CVE vulnerabilities

Reply via email to