Uploaded image for project: 'WildFly'
  1. WildFly
  2. WFLY-11887

[CVE-2016-3720]: Usage of vulnarable Jackson 1.9.13 libraries

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Done
    • Icon: Blocker Blocker
    • 18.0.0.Final
    • 14.0.0.Final
    • REST
    • None

      We have a couple of high prio vulnerabilities reported around usage of Jackson libraries on WildFly with regards to CVE-2016-3720:

      jackson-core-asl-1.9.13.jar	
      jackson-jaxrs-1.9.13.jar	
      jackson-mapper-asl-1.9.13.jar	
      jackson-xc-1.9.13.jar
      

      Could you please review and remove/update them?

        1. redhat-0006.txt
          5 kB
          Brian Stansberry

              bstansbe@redhat.com Brian Stansberry
              rady66@hotmail.com Radoslav Ivanov (Inactive)
              Alessio Soldano, Carlo de Wolf, James Perkins, Kabir Khan, Marek Kopecky, Martin Svehla, Ronald Sigal, Tom Jenkinson
              Votes:
              0 Vote for this issue
              Watchers:
              5 Start watching this issue

                Created:
                Updated:
                Resolved: