Skip to content
This repository was archived by the owner on Jul 10, 2024. It is now read-only.
This repository was archived by the owner on Jul 10, 2024. It is now read-only.

here is a vulnerability in jackson-databind 1.9.13,upgrade recommended #473

Open
Open
here is a vulnerability in jackson-databind 1.9.13,upgrade recommended#473
Labels
dependenciesPull requests that update a dependency file
@QiAnXinCodeSafe

Description

@QiAnXinCodeSafe
QiAnXinCodeSafe
opened on Dec 9, 2020

submarine/pom.xml

Line 120 in 3041ef2

<codehaus-jackson.version>1.9.13</codehaus-jackson.version>

CVE-2017-15095 CVE-2018-7489 CVE-2019-14540 CVE-2019-16335 CVE-2019-17267 CVE-2019-14893 CVE-2018-5968 CVE-2019-10172 CVE-2018-1000873
Recommended upgrade version:

2.6.7.4

Metadata

Metadata

Assignees

No one assigned

    Labels

    dependenciesPull requests that update a dependency file

    Type

    No type

    Fields

    No fields configured for issues without a type.

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions