Skip to content
This repository was archived by the owner on Jul 19, 2024. It is now read-only.
This repository was archived by the owner on Jul 19, 2024. It is now read-only.

There is a vulnerability in jackson-databind 2.4.1,upgrade recommended #34

Open
Open
There is a vulnerability in jackson-databind 2.4.1,upgrade recommended#34
@QiAnXinCodeSafe

Description

@QiAnXinCodeSafe
QiAnXinCodeSafe
opened on Jan 21, 2021

vsts-authentication-library-for-java/pom.xml

Line 85 in edee296

<jackson.version>2.4.1</jackson.version>

CVE-2020-9547 CVE-2018-14719 CVE-2018-14718 CVE-2019-14379 CVE-2019-20330 CVE-2019-16943

Recommended upgrade version:2..3

Metadata

Metadata

Assignees

No one assigned

    Labels

    No labels
    No labels

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions