[GH-16067] Address CVE-2023-35116 in h2o-steam.jar

h2oai · Feb 9, 2024 · 20e1825 · 20e1825
1 parent 4e49155
commit 20e1825
Showing 1 changed file with 2 additions and 1 deletion.
diff --git a/h2o-assemblies/steam/build.gradle b/h2o-assemblies/steam/build.gradle
@@ -51,9 +51,10 @@ dependencies {
     api "com.google.oauth-client:google-oauth-client:1.33.3"
 
     constraints {
-        api('com.fasterxml.jackson.core:jackson-databind:2.15.1') {
+        api('com.fasterxml.jackson.core:jackson-databind:2.15.2') {
             because 'Fixes CVE-2022-42003'
             because 'Fixes PRISMA-2023-0067'
+            because 'Fixes CVE-2023-35116'
         }
         api('org.codehaus.jettison:jettison:1.5.4') {
             because 'Fixes CVE-2023-1436'