Re: Vulnerabilities found for jackson-databind-2.9.9.jar and guava-20.0.jar in latest Apache-kafka latest version 2.3.0

Thank you for the update, I would like to know when can I expect this release? Regards, Namrata kokate On Sat, Sep 28, 2019, 11:21 PM Matthias J. Sax wrote: > Thanks Namrata, > > I think we should fix this for upcoming 2.3.1 release. > > -Matthias > > > On 9/26/19

[jira] [Created] (KAFKA-8952) Vulnerabilities found for jackson-databind-2.9.9.jar and guava-20.0.jar in latest Apache-kafka latest version 2.3.0

Namrata Kokate created KAFKA-8952: - Summary: Vulnerabilities found for jackson-databind-2.9.9.jar and guava-20.0.jar in latest Apache-kafka latest version 2.3.0 Key: KAFKA-8952 URL: https://issues.apache.org/jira

Vulnerabilities found for jackson-databind-2.9.9.jar and guava-20.0.jar in latest Apache-kafka latest version 2.3.0

vulnerabilities have been removed in the jackson-databind-2.9.10.jar and guava-24.1.1-jre.jar jars but the apache-kafka version 2.3.0 does not include these new jars. Can you help me with this? Regards, Namrata Kokate