[JENKINS-51749] Jackson-Databind needs to be upgraded to 2.9.4+ to address CVE-2018-5968

Type: Improvement
Resolution: Unresolved
Priority: Major
Component/s: pipeline-stage-view-plugin
Labels:
None

Similar Issues:
Powered by SuggestiMate

Show

The pipeline REST API plugin is using jackson-databind version 2.4.0. This version is vulnerable to CVE-2018-5968 (https://nvd.nist.gov/vuln/detail/CVE-2018-5968 )%29/] and should be upgraded to version 2.9.5

Bill Stephens created issue - 2018-06-06 18:48

Mark Waite made changes - 2024-09-29 11:28

Assignee

Original: Sam Van Oort [ svanoort ]

Assignee:: Unassigned

Reporter:: Bill Stephens

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Created:: 2018-06-06 18:48

Updated:: 2024-09-29 11:28

Jenkins

Details

Description

Attachments

Activity

People

Dates