Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Update Jackson version to fix a security vulnerability #888

Merged
merged 1 commit into from
Sep 23, 2019
Merged

Update Jackson version to fix a security vulnerability #888

merged 1 commit into from
Sep 23, 2019

Conversation

prd-fox
Copy link
Contributor

@prd-fox prd-fox commented Sep 20, 2019

Updates all 3 Jackson libraries to the latest release available in maven central, version 2.10.0.pr3

Fixes #887

@codecov-io
Copy link

codecov-io commented Sep 20, 2019
edited
Loading

Codecov Report

Merging #888 into master will not change coverage.
The diff coverage is n/a.

Impacted file tree graph

@@            Coverage Diff            @@
##             master     #888   +/-   ##
=========================================
  Coverage     99.39%   99.39%           
  Complexity     2097     2097           
=========================================
  Files           317      317           
  Lines          6112     6112           
  Branches        313      313           
=========================================
  Hits           6075     6075           
  Misses            5        5           
  Partials         32       32

Continue to review full report at Codecov.

Legend - Click here to learn more
Δ = absolute <relative> (impact), ø = not affected, ? = missing data
Powered by Codecov. Last update dcf4a1a...405f804. Read the comment docs.

@melowe melowe merged commit b962e17 into master Sep 23, 2019
@prd-fox prd-fox deleted the update-jackson-version-vuln branch September 23, 2019 10:10
vdamle pushed a commit to kaleido-io/tessera that referenced this pull request Oct 3, 2019
@prd-fox
Update Jackson version to fix a security vulnerability (Consensys#888)
4e92f3b
melowe pushed a commit that referenced this pull request Oct 15, 2019
@prd-fox @melowe
Update Jackson version to fix a security vulnerability (#888)
6c70ffe
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@melowe melowe melowe approved these changes

@chris-j-h chris-j-h Awaiting requested review from chris-j-h chris-j-h is a code owner

@namtruong namtruong Awaiting requested review from namtruong namtruong is a code owner

@nicolae-leonte-go nicolae-leonte-go Awaiting requested review from nicolae-leonte-go

@SatpalSandhu61 SatpalSandhu61 Awaiting requested review from SatpalSandhu61

Assignees
No one assigned
Labels
0.10.1 security upgrade
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

Jackson databind 2.9.9.2 vulnerability
4 participants
@prd-fox @codecov-io @melowe @Krish1979