Loading...

XML

Word

Printable

Type: Component Upgrade
Resolution: Done
Priority: Minor
Fix Version/s: 30.0.0.Beta1, 30.0.0.Final
Affects Version/s: 29.0.0.Final
Component/s: JPA / Hibernate, MP OpenAPI, OpenTelemetry, REST
Labels:
- downstream_dependency

Git Pull Request:
https://github.com/wildfly/wildfly/pull/17191
[QE] How to address?:
---
[QE] Why QE missed?:
---

Elytron upgraded the component to fix CVE PRISMA-2023-0067 (~~ELY-2582~~)

https://github.com/FasterXML/jackson-core/compare/jackson-core-2.14.3...jackson-core-2.15.2
https://github.com/FasterXML/jackson-databind/compare/jackson-databind-2.14.3...jackson-databind-2.15.2
https://github.com/FasterXML/jackson-annotations/compare/jackson-annotations-2.14.3...jackson-annotations-2.15.2

is cloned by

JBEAP-25646 (8.0.z) Upgrade FasterXML Jackson from 2.14.2.redhat-00001 to 2.15.2

Closed

is related to

ELY-2582 Upgrade Jackson FasterXML to version 2.15.2 - resolves CVE PRISMA-2023-0067

Resolved

WFCORE-6495 Upgrade FasterXML Jackson to 2.15.2

Resolved

Assignee:: Ilia Vassilev

Reporter:: Ilia Vassilev

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Created:: 2023/09/16 12:31 PM

Updated:: 2023/12/10 2:52 AM

Resolved:: 2023/09/22 7:47 PM