Upgrade com.fasterxml.jackson.core to version 2.15 #15934
trpellegrini
started this conversation in
General
Replies: 0 comments
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
-
Hello, I am building an application using h2o but my container scanner has flagged a vulnerability for one of your Java dependencies (com.fasterxml.jackson.core). Could you please bump the version from 2.14.2 to 2.15.0 in the next release? Below you will see the output of the scanner. Thanks!
"vulnerabilities": [
{
"CVE": "PRISMA-2023-0067",
"CVSS": "7.50",
"Fixed On": "24 Apr 23 00:00 UTC",
"Link": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=PRISMA-2023-0067",
"Package Name": "com.fasterxml.jackson.core_jackson-core",
"Package Type": "Java",
"Package Version": "2.14.2",
"Severity": "high",
"Status": "fixed in 2.15.0"
}]
support ticket: https://support.h2o.ai/a/tickets/107321
Beta Was this translation helpful? Give feedback.
All reactions