Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Update dependency com.fasterxml.jackson.core:jackson-databind - autoclosed #168

Conversation

mend-for-github-com[bot]
Copy link

@mend-for-github-com mend-for-github-com bot commented Dec 18, 2020

This PR contains the following updates:

Package Update Change
com.fasterxml.jackson.core:jackson-databind minor 2.8.7 -> 2.10.3
com.fasterxml.jackson.core:jackson-databind minor 2.10.1 -> 2.12.6
com.fasterxml.jackson.core:jackson-databind minor 2.9.4 -> 2.10.3

By merging this PR, the below vulnerabilities will be automatically resolved:

Severity CVSS Score CVE
High High 10.0 CVE-2018-14721
High High 9.8 CVE-2019-17531
High High 9.8 CVE-2018-14720
High High 9.8 CVE-2019-16335
High High 9.8 CVE-2020-8840
High High 9.8 CVE-2019-10202
High High 9.8 CVE-2019-14379
High High 9.8 CVE-2018-14719
High High 9.8 CVE-2018-14718
High High 9.8 CVE-2017-15095
High High 9.8 CVE-2017-17485
High High 9.8 CVE-2018-7489
High High 9.8 CVE-2019-14540
High High 9.8 CVE-2019-17267
High High 9.8 CVE-2019-16942
High High 9.8 CVE-2019-16943
High High 9.8 CVE-2019-14893
High High 9.8 CVE-2019-14892
High High 9.8 CVE-2020-9546
High High 9.8 CVE-2020-9547
High High 9.8 CVE-2020-9548
High High 9.8 CVE-2017-7525
High High 9.8 CVE-2018-11307
High High 9.8 CVE-2018-19362
High High 9.8 CVE-2018-19361
High High 9.8 CVE-2018-19360
High High 9.8 CVE-2019-20330
High High 8.8 CVE-2020-11111
High High 8.8 CVE-2020-11113
High High 8.8 CVE-2020-11112
High High 8.8 CVE-2020-10968
High High 8.8 CVE-2020-10969
High High 8.8 CVE-2020-10672
High High 8.8 CVE-2020-10673
High High 8.1 CVE-2020-36189
High High 8.1 CVE-2020-36188
High High 8.1 CVE-2020-36181
High High 8.1 CVE-2020-36180
High High 8.1 CVE-2020-36183
High High 8.1 CVE-2020-36182
High High 8.1 CVE-2020-36185
High High 8.1 CVE-2018-5968
High High 8.1 CVE-2020-36184
High High 8.1 CVE-2020-36187
High High 8.1 CVE-2020-36186
High High 8.1 CVE-2020-14060
High High 8.1 CVE-2020-14061
High High 8.1 CVE-2020-14062
High High 8.1 CVE-2020-14195
High High 8.1 CVE-2020-11619
High High 8.1 CVE-2020-11620
High High 8.1 CVE-2021-20190
High High 8.1 CVE-2020-36179
High High 8.1 CVE-2020-24616
High High 8.1 CVE-2020-24750
High High 7.5 CVE-2019-12086
High High 7.5 CVE-2018-12022
High High 7.5 CVE-2018-12023
High High 7.5 CVE-2019-14439
Medium Medium 5.9 CVE-2019-12814
Medium Medium 5.9 CVE-2019-12384

By merging this PR, the below vulnerabilities will be automatically resolved:

Severity CVSS Score CVE
High High 7.5 CVE-2020-25649
Medium Medium 5.9 WS-2021-0616

By merging this PR, the below vulnerabilities will be automatically resolved:

Severity CVSS Score CVE
High High 10.0 CVE-2018-14721
High High 9.8 CVE-2019-17531
High High 9.8 CVE-2018-14720
High High 9.8 CVE-2019-16335
High High 9.8 CVE-2020-8840
High High 9.8 CVE-2019-10202
High High 9.8 CVE-2019-14379
High High 9.8 CVE-2018-14719
High High 9.8 CVE-2018-14718
High High 9.8 CVE-2018-7489
High High 9.8 CVE-2019-14540
High High 9.8 CVE-2019-17267
High High 9.8 CVE-2019-16942
High High 9.8 CVE-2019-16943
High High 9.8 CVE-2019-14893
High High 9.8 CVE-2019-14892
High High 9.8 CVE-2020-9546
High High 9.8 CVE-2020-9547
High High 9.8 CVE-2020-9548
High High 9.8 CVE-2018-11307
High High 9.8 CVE-2018-19362
High High 9.8 CVE-2018-19361
High High 9.8 CVE-2018-19360
High High 9.8 CVE-2019-20330
High High 8.8 CVE-2020-11111
High High 8.8 CVE-2020-11113
High High 8.8 CVE-2020-11112
High High 8.8 CVE-2020-10968
High High 8.8 CVE-2020-10969
High High 8.8 CVE-2020-10672
High High 8.8 CVE-2020-10673
High High 8.1 CVE-2020-36189
High High 8.1 CVE-2020-36188
High High 8.1 CVE-2020-36181
High High 8.1 CVE-2020-36180
High High 8.1 CVE-2020-36183
High High 8.1 CVE-2020-36182
High High 8.1 CVE-2020-36185
High High 8.1 CVE-2020-36184
High High 8.1 CVE-2020-36187
High High 8.1 CVE-2020-36186
High High 8.1 CVE-2020-14060
High High 8.1 CVE-2020-14061
High High 8.1 CVE-2020-14062
High High 8.1 CVE-2020-14195
High High 8.1 CVE-2020-11619
High High 8.1 CVE-2020-11620
High High 8.1 CVE-2020-35490
High High 8.1 CVE-2020-35491
High High 8.1 CVE-2021-20190
High High 8.1 CVE-2020-35728
High High 8.1 CVE-2020-36179
High High 8.1 CVE-2020-24616
High High 8.1 CVE-2020-24750
High High 7.5 CVE-2019-12086
High High 7.5 CVE-2020-25649
High High 7.5 CVE-2018-12022
High High 7.5 CVE-2018-12023
High High 7.5 CVE-2019-14439
Medium Medium 5.9 CVE-2019-12814
Medium Medium 5.9 CVE-2019-12384

  • If you want to rebase/retry this PR, click this checkbox.

@mend-for-github-com mend-for-github-com bot added the security fix Security fix generated by WhiteSource label Dec 18, 2020
@mend-for-github-com mend-for-github-com bot changed the title Update dependency com.fasterxml.jackson.core:jackson-databind Update dependency com.fasterxml.jackson.core:jackson-databind to v2.10.3 Jan 13, 2021
@mend-for-github-com mend-for-github-com bot force-pushed the whitesource-remediate/com.fasterxml.jackson.core-jackson-databind-2.x branch from 6ccc492 to edd9dc5 Compare February 12, 2021 01:12
@mend-for-github-com mend-for-github-com bot changed the title Update dependency com.fasterxml.jackson.core:jackson-databind to v2.10.3 Update dependency com.fasterxml.jackson.core:jackson-databind Feb 12, 2021
@mend-for-github-com mend-for-github-com bot changed the title Update dependency com.fasterxml.jackson.core:jackson-databind Update dependency com.fasterxml.jackson.core:jackson-databind to v2.10.3 Jul 21, 2021
@mend-for-github-com mend-for-github-com bot changed the title Update dependency com.fasterxml.jackson.core:jackson-databind to v2.10.3 Update dependency com.fasterxml.jackson.core:jackson-databind Feb 6, 2022
@mend-for-github-com mend-for-github-com bot force-pushed the whitesource-remediate/com.fasterxml.jackson.core-jackson-databind-2.x branch from edd9dc5 to e04ff0f Compare February 6, 2022 06:07
@mend-for-github-com mend-for-github-com bot changed the title Update dependency com.fasterxml.jackson.core:jackson-databind Update dependency com.fasterxml.jackson.core:jackson-databind - autoclosed May 2, 2022
@mend-for-github-com mend-for-github-com bot deleted the whitesource-remediate/com.fasterxml.jackson.core-jackson-databind-2.x branch May 2, 2022 18:27
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
security fix Security fix generated by WhiteSource
Projects
None yet
Development

Successfully merging this pull request may close these issues.

0 participants