Skip to content

Commit

Permalink
Pull Jackson update to avoid DoS issue
Browse files Browse the repository at this point in the history 
- com.fasterxml.jackson.core:jackson-core 2.14.2 -> 2.17.2
- FasterXML/jackson-core#861
- Denial of Service (DoS) [High Severity][https://security.snyk.io/vuln/SNYK-JAVA-COMFASTERXMLJACKSONCORE-7569538] in com.fasterxml.jackson.core:jackson-core@2.14.2
  introduced by com.google.http-client:google-http-client-jackson2@1.44.2 > com.fasterxml.jackson.core:jackson-core@2.14.2
  This issue was fixed in versions: 2.15.0-rc1
  • Loading branch information
@elevenfive
elevenfive committed Jul 26, 2024
1 parent ed55363 commit e6da64c
Showing 1 changed file with 1 addition and 1 deletion.
2 changes: 1 addition & 1 deletion pom.xml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -597,7 +597,7 @@
<project.build.sourceEncoding>UTF-8</project.build.sourceEncoding>
<project.jsr305.version>3.0.2</project.jsr305.version>
<project.gson.version>2.10.1</project.gson.version>
<project.jackson-core2.version>2.14.2</project.jackson-core2.version>
<project.jackson-core2.version>2.15.0-rc1</project.jackson-core2.version>
<project.protobuf-java.version>3.21.12</project.protobuf-java.version>
<project.guava.version>30.1.1-android</project.guava.version>
<project.xpp3.version>1.1.4c</project.xpp3.version>
Expand Down

0 comments on commit e6da64c

Please sign in to comment.