Uploaded image for project: 'WildFly Core'
  1. WildFly Core
  2. WFCORE-6088

Upgrade Jackson Databind to 2.13.4.1 (CVE-2022-42003)

XMLWordPrintable

    • Icon: Component Upgrade Component Upgrade
    • Resolution: Done
    • Icon: Major Major
    • 19.0.0.Final
    • None
    • Test Suite
    • None

      Jackson Databind is affected by CVE-2022-42003. WildFly Core uses it as a test dependency. Try to upgrade to 2.13.4.1 to avoid noise from scanners flagging us as vulnerable (plus to avoid any actual relevant issue, in the unlikely even there is one.)

            bstansbe@redhat.com Brian Stansberry
            bstansbe@redhat.com Brian Stansberry
            Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

              Created:
              Updated:
              Resolved: