Upgrade to Jackson Bom 2.13.2 #30242

snicoll · 2022-03-16T12:56:59Z

No description provided.

snicoll · 2022-03-16T13:44:59Z

It looks like things are still being released as com.fasterxml.jackson.module:jackson-module-kotlin:2.13.2 isn't available yet.

snicoll · 2022-03-16T13:48:33Z

See FasterXML/jackson-module-kotlin#550

dineshbhagat · 2022-03-18T07:12:06Z

@snicoll Its released: https://repo1.maven.org/maven2/com/fasterxml/jackson/module/jackson-module-kotlin/2.13.2/

AshishKmrSingh · 2022-03-25T06:06:27Z

Hi, There is going to be a new version for jackson. 2.13.2 was DoS vulnerable. I believe they have that fix in 2.13.2.1 which they released today. Will you be taking this in Spring boot in some time in the near future?

snicoll · 2022-03-25T09:04:24Z

We will upgrade in our next release train, next month.

snicoll added the type: dependency-upgrade A dependency upgrade label Mar 16, 2022

snicoll added this to the 2.6.5 milestone Mar 16, 2022

snicoll added the status: blocked An issue that's blocked on an external project change label Mar 16, 2022

snicoll removed the status: blocked An issue that's blocked on an external project change label Mar 18, 2022

snicoll closed this as completed in e49de1f Mar 19, 2022

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Upgrade to Jackson Bom 2.13.2 #30242

Upgrade to Jackson Bom 2.13.2 #30242

snicoll commented Mar 16, 2022

snicoll commented Mar 16, 2022

snicoll commented Mar 16, 2022

dineshbhagat commented Mar 18, 2022

AshishKmrSingh commented Mar 25, 2022

snicoll commented Mar 25, 2022

Upgrade to Jackson Bom 2.13.2 #30242

Upgrade to Jackson Bom 2.13.2 #30242

Comments

snicoll commented Mar 16, 2022

snicoll commented Mar 16, 2022

snicoll commented Mar 16, 2022

dineshbhagat commented Mar 18, 2022

AshishKmrSingh commented Mar 25, 2022

snicoll commented Mar 25, 2022