Uploaded image for project: 'WildFly Core'
  1. WildFly Core
  2. WFCORE-6088

Upgrade Jackson Databind to 2.13.4.1 (CVE-2022-42003)

XMLWordPrintable

    • Icon: Component Upgrade Component Upgrade
    • Resolution: Done
    • Icon: Major Major
    • 19.0.0.Final
    • None
    • Test Suite
    • None

      Jackson Databind is affected by CVE-2022-42003. WildFly Core uses it as a test dependency. Try to upgrade to 2.13.4.1 to avoid noise from scanners flagging us as vulnerable (plus to avoid any actual relevant issue, in the unlikely even there is one.)

              bstansbe@redhat.com Brian Stansberry
              bstansbe@redhat.com Brian Stansberry
              Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

                Created:
                Updated:
                Resolved: