[jira] [Commented] (KAFKA-15000) High vulnerability PRISMA-2023-0067 reported in jackson-core

Manyanda Chitimbo (Jira) Wed, 17 May 2023 08:09:05 -0700


    [ 
https://issues.apache.org/jira/browse/KAFKA-15000?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17723502#comment-17723502
 ]


Manyanda Chitimbo commented on KAFKA-15000:
-------------------------------------------

Hi [~arushir] I've no idea but let me tag along [~showuon] [~mimaison] who I am 
hoping will have a better idea than myself.

> High vulnerability PRISMA-2023-0067 reported in jackson-core
> ------------------------------------------------------------
>
>                 Key: KAFKA-15000
>                 URL: https://issues.apache.org/jira/browse/KAFKA-15000
>             Project: Kafka
>          Issue Type: Bug
>    Affects Versions: 3.4.0, 3.3.2
>            Reporter: Arushi Rai
>            Priority: Critical
>
> Kafka is using jackson-core version 2.13.4 which has high vulnerability 
> reported [PRISMA-2023-0067. 
> |https://github.com/FasterXML/jackson-core/pull/827]
> This vulnerability is fix in Jackson-core 2.15.0 and Kafka should upgrade to 
> the same. 



--
This message was sent by Atlassian Jira
(v8.20.10#820010)

[jira] [Commented] (KAFKA-15000) High vulnerability PRISMA-2023-0067 reported in jackson-core

Reply via email to