Uploaded image for project: 'SonarQube'
  1. SonarQube
  2. SONAR-12831

Upgrade jackson-databind from 2.9.9.2 to 2.10+

    XMLWordPrintable

    Details

    • Type: Task
    • Status: Closed
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: None
    • Fix Version/s: 8.2
    • Component/s: None
    • Labels:
      None
    • Edition:
      Community
    • Production Notes:
      None

      Description

      A security scan from a customer reported issues in the current jackson-databind version.
      SonarQube is not vulnerable, but a security patch is available.
      We should upgrade to silent the security reports warnings.

        Attachments

          Activity

            People

            Assignee:
            pierre.guillot Pierre Guillot
            Reporter:
            christophe.levis Christophe Levis
            Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

              Dates

              Due:
              Created:
              Updated:
              Resolved: