Uploaded image for project: 'TomEE'
  1. TomEE
  2. TOMEE-4206

Jackson 2.15.0

    XMLWordPrintableJSON

Details

    • Dependency upgrade
    • Status: Resolved
    • Major
    • Resolution: Fixed
    • 8.0.14
    • 8.0.15
    • TomEE Core Server
    • None

    Description

      Looks like there is vulnerability on Jackson, see below links.

      https://github.com/FasterXML/jackson-core/pull/827

      https://github.com/FasterXML/jackson-core/issues/958

       

      Attachments

        Issue Links

          fixes

          Dependency upgrade - Upgrading a dependency to a newer version TOMEE-4194 Update snakeyaml version to 2.0 to mitigate CVE-2022-1471

          • Major - Major loss of function.
          • Resolved
          is cloned by

          Dependency upgrade - Upgrading a dependency to a newer version TOMEE-4212 Jackson 2.15.0

          • Major - Major loss of function.
          • Resolved
          links to

          Web Link GitHub Pull Request #1042

          Activity

            People

              rzo1 Richard Zowalla
              rthannee RAJU THANNEERU
              Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved:

                Time Tracking

                  Estimated:
                  Original Estimate - Not Specified
                  Not Specified
                  Remaining:
                  Remaining Estimate - 0h
                  0h
                  Logged:
                  Time Spent - 0.5h
                  0.5h