Accueil Explorer Aide
S'inscrire Connexion
ylproj
/
livy
2
0
Fork 0
Fichiers Tickets 0 Pull Requests 0 Wiki
Parcourir la source

[LIVY-458][BUILD] Upgrade jackson version to 2.9.5

## What changes were proposed in this pull request?

Due to several security issues of jackson databind module (CVE-2018-5968, CVE-2017-17485, CVE-2018-7489), here propose to upgrade jackson version 2.9.5.

## How was this patch tested?

Existing UTs.

Author: jerryshao <sshao@hortonworks.com>

Closes #87 from jerryshao/LIVY-458.
jerryshao il y a 7 ans
Parent
cd8b112618
commit
71c3feed9c
1 fichiers modifiés avec 1 ajouts et 1 suppressions
Vue séparée Afficher les stats Diff
  1. 1 1
      pom.xml

+ 1 - 1
pom.xml
Voir le fichier 

@@ -87,7 +87,7 @@
 
     <guava.version>15.0</guava.version>
 
     <httpclient.version>4.5.3</httpclient.version>
 
     <httpcore.version>4.4.4</httpcore.version>
 
-    <jackson.version>2.9.2</jackson.version>
 
+    <jackson.version>2.9.5</jackson.version>
 
     <javax.servlet-api.version>3.1.0</javax.servlet-api.version>
 
     <jetty.version>9.2.16.v20160414</jetty.version>
 
     <json4s.version>3.2.10</json4s.version>