[JBoss JIRA] (WFLY-6713) Upgrade Jackson to 2.8.x due to CVE-2016-3720

Wednesday, 15 June 2016

    [
https://issues.jboss.org/browse/WFLY-6713?page=com.atlassian.jira.plugin....
] 

Tomaz Cerar commented on WFLY-6713:
-----------------------------------

Problem is in jackson-dataformat-xml project 
http://wiki.fasterxml.com/JacksonExtensionXmlDataBinding
Which Wildfly doesn't use.

...
 Upgrade Jackson to 2.8.x due to CVE-2016-3720
 ---------------------------------------------

                 Key: WFLY-6713
                 URL: https://issues.jboss.org/browse/WFLY-6713
             Project: WildFly
          Issue Type: Bug
          Components: REST
            Reporter: Juergen Zimmermann
            Assignee: Stuart Douglas

 Jackson 2.7.4 is currently used, but reported at
https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-3720 

--
This message was sent by Atlassian JIRA
(v6.4.11#64026)

2026

2025

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006