Details
-
Component Upgrade
-
Resolution: Done
-
Major
-
3.14.0.Final
-
None
-
None
-
Undefined
Description
com.fasterxml.jackson.core_jackson-databind@2.9.6 dependency seems to be the one with the actual critical vulnerabilities :
Those seem to be fixed in latest version 2.11.3: https://mvnrepository.com/artifact/com.fasterxml.jackson.core/jackson-databind/2.11.3
Attachments
Issue Links
- is blocked by
-
RESTEASY-2830 Update dependencies for 3.15.0.Final
- Resolved