[BSERV-12223] Update jackson-databind dependency to 2.10.2 - Create and track feature requests for Atlassian products.

XML

Word

Printable

Details

Type: Bug
Status: Closed (View Workflow)
Priority: Highest
Resolution: Fixed
Affects Version/s: 6.10.0
Fix Version/s: 7.0.0, 6.10.2
Component/s: Security - Other
Labels:
None

Fixed in Long Term Support Release/s:

Download 6.10
Support reference count:
1
Symptom Severity:
Severity 1 - Critical
UIS:
13
Bug Fix Policy:
View Atlassian Server bug fix policy

Description

Issue Summary

jackson-databind library has vulnerabilities in v2.5.3 and v2.9.4

Steps to Reproduce

N/A

Expected Results

N/A

Actual Results

N/A

Workaround

N/A

Attachments

Issue Links

relates to: BBSDEV-21278 Loading...; BBSDEV-21670 Loading...

Activity

People

Assignee:: Manish

Reporter:: Manish

Votes:: 2 Vote for this issue

Watchers:: 6 Start watching this issue

Dates

Created:: 04/Mar/2020 12:32 AM

Updated:: 14 hours ago

Resolved:: 08/Jun/2020 1:48 PM

Backbone Issue Sync

Backbone Issue Sync is enabled for your project, but there is no synchronization info for this issue.