[jboss-jira] [JBoss JIRA] (WFCORE-4268) Upgrade FasterXML Jackson from 2.9.5 to 2.9.8
Bharath Kolla (Jira)
issues at jboss.org
Fri Apr 5 17:20:02 EDT 2019
[ https://issues.jboss.org/browse/WFCORE-4268?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13718830#comment-13718830 ]
Bharath Kolla commented on WFCORE-4268:
---------------------------------------
Hello,
While I appreciate latest Wildfly release containing the FasterXML Jackson 2.9.8 version which includes fixes for several CVE's, is it possible for the tickets to include the CVE's addressed by the component upgrades in WF Core at least? We are all spoiled by the release notes that most vendors release that includes CVE info and come to expect the same of Wildfly :-)
It would be incredibly helpful if this request can be facilitated so we can effectively categorize the releases as security/non-security releases and adjust the timeframes for updates accordingly.
Thanks,
> Upgrade FasterXML Jackson from 2.9.5 to 2.9.8
> ---------------------------------------------
>
> Key: WFCORE-4268
> URL: https://issues.jboss.org/browse/WFCORE-4268
> Project: WildFly Core
> Issue Type: Component Upgrade
> Components: XML Frameworks
> Reporter: Bartosz Spyrko
> Assignee: Jeff Mesnil
> Priority: Major
> Fix For: 8.0.0.Beta3, 8.0.0.Final
>
>
> Tag:
> https://github.com/FasterXML/jackson-core/releases/tag/jackson-core-2.9.8
> https://github.com/FasterXML/jackson-annotations/releases/tag/jackson-annotations-2.9.8
> https://github.com/FasterXML/jackson-databind/releases/tag/jackson-databind-2.9.8
> https://github.com/FasterXML/jackson-modules-java8/releases/tag/jackson-modules-java8-2.9.8
> https://github.com/FasterXML/jackson-jaxrs-providers/releases/tag/jackson-jaxrs-providers-2.9.8
> https://github.com/FasterXML/jackson-modules-base/releases/tag/jackson-modules-base-2.9.8
--
This message was sent by Atlassian Jira
(v7.12.1#712002)
More information about the jboss-jira
mailing list