[
https://issues.apache.org/jira/browse/ZOOKEEPER-4505?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17514071#comment-17514071
]
Edwin Hobor commented on ZOOKEEPER-4505:
https://github.com/apache/zookeeper/pull/1842
>
[
https://issues.apache.org/jira/browse/ZOOKEEPER-4505?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Edwin Hobor updated ZOOKEEPER-4505:
---
Description:
*CVE-2020-36518* vulnerability affects jackson-databind in Zookeeper (see
[
https://issues.apache.org/jira/browse/ZOOKEEPER-4505?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Edwin Hobor updated ZOOKEEPER-4505:
---
Summary: CVE-2020-36518 - Upgrade jackson databind to 2.13.2.1 (was:
CVE-2020-36518 -
Edwin Hobor created ZOOKEEPER-4505:
--
Summary: CVE-2020-36518 - Upgrade jackson databind to 2.12.6.1 or
2.13.2.1
Key: ZOOKEEPER-4505
URL: https://issues.apache.org/jira/browse/ZOOKEEPER-4505
Project:
[
https://issues.apache.org/jira/browse/ZOOKEEPER-4045?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Edwin Hobor updated ZOOKEEPER-4045:
---
Description:
Jackson reported a vulnerability under *CVE-2020-25649*. Upgrading to
[
https://issues.apache.org/jira/browse/ZOOKEEPER-4045?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Edwin Hobor updated ZOOKEEPER-4045:
---
Affects Version/s: 3.6.0
> CVE-2020-25649 - Upgrade jackson databind to 2.10.5.1
>
Edwin Hobor created ZOOKEEPER-4045:
--
Summary: CVE-2020-25649 - Upgrade jackson databind to 2.10.5.1
Key: ZOOKEEPER-4045
URL: https://issues.apache.org/jira/browse/ZOOKEEPER-4045
Project: ZooKeeper