tikv
/
client-java
mirror of https://github.com/tikv/client-java.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

[close #567] upgrade jackson-databind to 2.13.2.2 to fix CVE-2020-36518 (#584)

This commit is contained in:
iosmanthus 2022-04-07 18:11:24 +08:00 committed by GitHub
parent 56d64ef5c2
commit 7fa24c3206
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 3 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
pom.xml
View File

@ -61,7 +61,8 @@
<netty.tcnative.version>2.0.34.Final</netty.tcnative.version> <netty.tcnative.version>2.0.34.Final</netty.tcnative.version>
<gson.version>2.8.9</gson.version> <gson.version>2.8.9</gson.version>
<powermock.version>1.6.6</powermock.version> <powermock.version>1.6.6</powermock.version>
<jackson.version>2.12.3</jackson.version> <jackson-annotations.version>2.13.2</jackson-annotations.version>
<jackson.version>2.13.2.2</jackson.version>
<trove4j.version>3.0.1</trove4j.version> <trove4j.version>3.0.1</trove4j.version>
<jetcd.version>0.4.1</jetcd.version> <jetcd.version>0.4.1</jetcd.version>
<joda-time.version>2.9.9</joda-time.version> <joda-time.version>2.9.9</joda-time.version>
@ -177,7 +178,7 @@
<dependency> <dependency>
<groupId>com.fasterxml.jackson.core</groupId> <groupId>com.fasterxml.jackson.core</groupId>
<artifactId>jackson-annotations</artifactId> <artifactId>jackson-annotations</artifactId>
<version>${jackson.version}</version> <version>${jackson-annotations.version}</version>
</dependency> </dependency>
<dependency> <dependency>
<groupId>com.fasterxml.jackson.core</groupId> <groupId>com.fasterxml.jackson.core</groupId>