Uploaded image for project: 'WildFly Core'
  1. WildFly Core
  2. WFCORE-6088

Upgrade Jackson Databind to 2.13.4.1 (CVE-2022-42003)

    XMLWordPrintable

Details

    • Component Upgrade
    • Resolution: Done
    • Major
    • 19.0.0.Final
    • None
    • Test Suite
    • None

    Description

      Jackson Databind is affected by CVE-2022-42003. WildFly Core uses it as a test dependency. Try to upgrade to 2.13.4.1 to avoid noise from scanners flagging us as vulnerable (plus to avoid any actual relevant issue, in the unlikely even there is one.)

      Attachments

        Activity

          People

            bstansbe@redhat.com Brian Stansberry
            bstansbe@redhat.com Brian Stansberry
            Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved: