-
Notifications
You must be signed in to change notification settings - Fork 165
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Upgrade Jackson to 2.13.x #3385
Labels
dependencies
Pull requests that update a dependency file
📶 enhancement
issue is a new feature or improvement
security
Milestone
Comments
barthanssens
added
📶 enhancement
issue is a new feature or improvement
dependencies
Pull requests that update a dependency file
labels
Nov 1, 2021
Somewhat more urgent due to CVE-2020-36518 , it is recommended to upgrade to 2.13.0 |
See also #4125 |
May also affect jsonld-java (and/or other dependencies which include jackson-* artifacts) |
barthanssens
added a commit
to Fedict/rdf4j
that referenced
this issue
Aug 29, 2022
Signed-off-by: Bart Hanssens <bart.hanssens@bosa.fgov.be>
hmottestad
pushed a commit
that referenced
this issue
Aug 31, 2022
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Labels
dependencies
Pull requests that update a dependency file
📶 enhancement
issue is a new feature or improvement
security
Problem description
To keep libraries up to date, check if we could upgrade Jackson dependency from
2.11.x to 2.12.x (2.13 is also available, but fairly new)2.13, since it also fixes a CVEPreferred solution
Use to a more recent version, e.g.
2.12.42.13.3Are you interested in contributing a solution yourself?
Yes
Alternatives you've considered
No response
Anything else?
See release notes on https://github.com/FasterXML/jackson/wiki/Jackson-Release-2.13
CQs
The text was updated successfully, but these errors were encountered: