Upgrade `jackson-jr-objects` to `2.15.0` or higher to remediate DDoS vulnerability

Release `cf-java-logging-support-log4j2: 3.8.4` transitively depends on `jackson-core: 2.14.2`:

```
[INFO] |  +- com.sap.hcp.cf.logging:cf-java-logging-support-log4j2:jar:3.8.4:compile
[INFO] |  |  \- com.sap.hcp.cf.logging:cf-java-logging-support-core:jar:3.8.4:compile
[INFO] |  |     \- com.fasterxml.jackson.jr:jackson-jr-objects:jar:2.14.2:compile
[INFO] |  |        \- com.fasterxml.jackson.core:jackson-core:jar:2.14.2:compile
```

Library `jackson-core: 2.14.2` contains a DDoS vulnerability, see e.g.: https://security.snyk.io/vuln/SNYK-JAVA-COMFASTERXMLJACKSONCORE-7569538

Please consider upgrading to `2.15.0` or higher.



Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Upgrade `jackson-jr-objects` to `2.15.0` or higher to remediate DDoS vulnerability #193

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Upgrade jackson-jr-objects to 2.15.0 or higher to remediate DDoS vulnerability #193

Description

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions

Upgrade `jackson-jr-objects` to `2.15.0` or higher to remediate DDoS vulnerability #193