jackson-databind 2.13.2.1 (CVE-2020-36518)

Description

Bump jackson-databind from 2.13.1 to 2.13.2.1 fixing https://nvd.nist.gov/vuln/detail/CVE-2020-36518

Use

to check that it actually works, MODPUBSUB-231 hasn't updated jackson-databind because of other modules downgrading the version.

CSP Request Details

None

CSP Rejection Details

None

Potential Workaround

None

Linked issues

defines

UXPROD-3418

Vega - Morning Glory Enhancements/Bugfixes/Tech Debt

relates to

MODPUBSUB-231

Update dependencies fixing CVE-2022-0839, CVE-2020-36518

Checklist

hide

TestRail: Results

Activity

Show:

Craig McNally April 28, 2022 at 3:36 PM

FYI

Craig McNally April 28, 2022 at 3:35 PM

The security team has reviewed this and assigned a priority.

Done

Details
Assignee
Unassigned
Reporter
Julian Ladisch
Labels
security
Priority
P3
Story Points
0.5
Sprint
None
Development Team
Vega
Fix versions
2.5.1
2.6.0
RCA Group
TBD
TestRail: Cases
Open TestRail: Cases
TestRail: Runs
Open TestRail: Runs

Created April 22, 2022 at 10:25 AM

Updated May 9, 2022 at 4:41 PM

Resolved May 2, 2022 at 8:17 PM

Configure

TestRail: Cases

TestRail: Runs

jackson-databind 2.13.2.1 (CVE-2020-36518)

Description

CSP Request Details

CSP Rejection Details

Potential Workaround

Linked issues

defines

relates to

Checklist

TestRail: Results

Activity

Craig McNally April 28, 2022 at 3:36 PM

Craig McNally April 28, 2022 at 3:35 PM

DetailsAssigneeUnassignedUnassignedReporterJulian LadischJulian LadischLabelssecurityPriorityP3Story Points0.5SprintNone+1Development TeamVegaFix versions2.5.12.6.0RCA GroupTBDTestRail: CasesOpen TestRail: CasesTestRail: RunsOpen TestRail: Runs

Details

Assignee

Reporter

Labels

Priority

Story Points

Sprint

Development Team

Fix versions

RCA Group

TestRail: Cases

TestRail: Runs

Details
Assignee
Unassigned
Reporter
Julian Ladisch
Labels
security
Priority
P3
Story Points
0.5
Sprint
None
Development Team
Vega
Fix versions
2.5.1
2.6.0
RCA Group
TBD
TestRail: Cases
Open TestRail: Cases
TestRail: Runs
Open TestRail: Runs