Jackson.databind -Vulnerable in version 2.11.4 & No such Method error in 2.13.2 (latest version) #3429
Comments
MohanRamu
added
the
to-evaluate
MohanRamu
changed the title
MohanRamu
changed the title
|
The error sounds like you're still using an outdated version (pre 2.12) of jackson-core. You will need to update that to 2.13.2. 2.11 is unsupported and will not receive a backport: https://twitter.com/fasterxml/status/1507198466732175378 |
With the version 2.13.2, i got No such method error in com.fasterxml.jackson.core.JsonParser.getReadCapabilities()Lcom/fasterxml/jackson/core/util/JacksonFeatureSet; |
|
You need 2.13.2.1 of jackson-databind, and 2.13.2 of jackson-core. You do not have the latter. |
|
jackson-databind 2.13.2 is the latest, i could not find 2.13.2.1 |
|
It's not visible on mvnrepository yet, but it is available on maven central. |
|
Could not download jackson-databind 2.13.2.1
|
|
That error is tracked under #3428. Please see the comments there for a workaround. |
|
@MohanRamu as per notes, there is no |
shade(group: 'com.fasterxml.jackson.core', name: 'jackson-core')
Jackson Data bind jar in gradle project fails to execute test cases when i use latest version-2.13.2 due to No such method error in com.fasterxml.jackson.core.JsonParser.getReadCapabilities()Lcom/fasterxml/jackson/core/util/JacksonFeatureSet;
java.lang.NoSuchMethodError: com.fasterxml.jackson.core.JsonParser.getReadCapabilities()Lcom/fasterxml/jackson/core/util/JacksonFeatureSet;
When i use 2.11.4 it is working as expected, but it is highly vulnerable in sonarqube report.
The text was updated successfully, but these errors were encountered: