Skip to content

[Snyk] Security upgrade com.fasterxml.jackson.core:jackson-databind from 2.9.2 to 2.10.0

Brice Copy requested to merge snyk-fix-a078a55502bb6ffd29165891b53d95bf into master

Snyk has created this PR to fix one or more vulnerable packages in the `maven` dependencies of this project.

Changes included in this Merge Request

  • Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
    • pom.xml

Vulnerabilities that will be fixed

With an upgrade:
Severity Issue Upgrade Breaking Change Exploit Maturity
high severity Deserialization of Untrusted Data
SNYK-JAVA-COMFASTERXMLJACKSONCORE-174736
com.fasterxml.jackson.core:jackson-databind:
2.9.2 -> 2.10.0
No No Known Exploit
high severity Deserialization of Untrusted Data
SNYK-JAVA-COMFASTERXMLJACKSONCORE-32043
com.fasterxml.jackson.core:jackson-databind:
2.9.2 -> 2.10.0
No No Known Exploit
high severity Deserialization of Untrusted Data
SNYK-JAVA-COMFASTERXMLJACKSONCORE-32044
com.fasterxml.jackson.core:jackson-databind:
2.9.2 -> 2.10.0
No No Known Exploit
high severity Deserialization of Untrusted Data
SNYK-JAVA-COMFASTERXMLJACKSONCORE-32111
com.fasterxml.jackson.core:jackson-databind:
2.9.2 -> 2.10.0
No No Known Exploit
high severity Deserialization of Untrusted Data
SNYK-JAVA-COMFASTERXMLJACKSONCORE-450207
com.fasterxml.jackson.core:jackson-databind:
2.9.2 -> 2.10.0
No No Known Exploit
high severity Deserialization of Untrusted Data
SNYK-JAVA-COMFASTERXMLJACKSONCORE-450917
com.fasterxml.jackson.core:jackson-databind:
2.9.2 -> 2.10.0
No No Known Exploit
high severity Deserialization of Untrusted Data
SNYK-JAVA-COMFASTERXMLJACKSONCORE-455617
com.fasterxml.jackson.core:jackson-databind:
2.9.2 -> 2.10.0
No No Known Exploit
high severity Deserialization of Untrusted Data
SNYK-JAVA-COMFASTERXMLJACKSONCORE-467014
com.fasterxml.jackson.core:jackson-databind:
2.9.2 -> 2.10.0
No No Known Exploit
high severity Deserialization of Untrusted Data
SNYK-JAVA-COMFASTERXMLJACKSONCORE-467015
com.fasterxml.jackson.core:jackson-databind:
2.9.2 -> 2.10.0
No No Known Exploit
high severity Deserialization of Untrusted Data
SNYK-JAVA-COMFASTERXMLJACKSONCORE-467016
com.fasterxml.jackson.core:jackson-databind:
2.9.2 -> 2.10.0
No No Known Exploit
high severity Deserialization of Untrusted Data
SNYK-JAVA-COMFASTERXMLJACKSONCORE-469674
com.fasterxml.jackson.core:jackson-databind:
2.9.2 -> 2.10.0
No No Known Exploit
high severity Deserialization of Untrusted Data
SNYK-JAVA-COMFASTERXMLJACKSONCORE-469676
com.fasterxml.jackson.core:jackson-databind:
2.9.2 -> 2.10.0
No No Known Exploit
high severity Deserialization of Untrusted Data
SNYK-JAVA-COMFASTERXMLJACKSONCORE-471943
com.fasterxml.jackson.core:jackson-databind:
2.9.2 -> 2.10.0
No No Known Exploit
high severity Deserialization of Untrusted Data
SNYK-JAVA-COMFASTERXMLJACKSONCORE-472980
com.fasterxml.jackson.core:jackson-databind:
2.9.2 -> 2.10.0
No No Known Exploit
high severity Deserialization of Untrusted Data
SNYK-JAVA-COMFASTERXMLJACKSONCORE-540500
com.fasterxml.jackson.core:jackson-databind:
2.9.2 -> 2.10.0
No No Known Exploit
high severity Deserialization of Untrusted Data
SNYK-JAVA-COMFASTERXMLJACKSONCORE-548451
com.fasterxml.jackson.core:jackson-databind:
2.9.2 -> 2.10.0
No Proof of Concept
high severity Deserialization of Untrusted Data
SNYK-JAVA-COMFASTERXMLJACKSONCORE-559094
com.fasterxml.jackson.core:jackson-databind:
2.9.2 -> 2.10.0
No Proof of Concept
high severity Deserialization of Untrusted Data
SNYK-JAVA-COMFASTERXMLJACKSONCORE-559106
com.fasterxml.jackson.core:jackson-databind:
2.9.2 -> 2.10.0
No Proof of Concept
high severity Deserialization of Untrusted Data
SNYK-JAVA-COMFASTERXMLJACKSONCORE-560762
com.fasterxml.jackson.core:jackson-databind:
2.9.2 -> 2.10.0
No No Known Exploit
high severity Deserialization of Untrusted Data
SNYK-JAVA-COMFASTERXMLJACKSONCORE-560766
com.fasterxml.jackson.core:jackson-databind:
2.9.2 -> 2.10.0
No No Known Exploit
high severity Deserialization of Untrusted Data
SNYK-JAVA-COMFASTERXMLJACKSONCORE-561362
com.fasterxml.jackson.core:jackson-databind:
2.9.2 -> 2.10.0
No No Known Exploit
high severity Deserialization of Untrusted Data
SNYK-JAVA-COMFASTERXMLJACKSONCORE-561373
com.fasterxml.jackson.core:jackson-databind:
2.9.2 -> 2.10.0
No No Known Exploit
high severity Deserialization of Untrusted Data
SNYK-JAVA-COMFASTERXMLJACKSONCORE-561585
com.fasterxml.jackson.core:jackson-databind:
2.9.2 -> 2.10.0
No No Known Exploit
high severity Deserialization of Untrusted Data
SNYK-JAVA-COMFASTERXMLJACKSONCORE-561586
com.fasterxml.jackson.core:jackson-databind:
2.9.2 -> 2.10.0
No No Known Exploit
high severity Deserialization of Untrusted Data
SNYK-JAVA-COMFASTERXMLJACKSONCORE-561587
com.fasterxml.jackson.core:jackson-databind:
2.9.2 -> 2.10.0
No No Known Exploit
high severity Deserialization of Untrusted Data
SNYK-JAVA-COMFASTERXMLJACKSONCORE-564887
com.fasterxml.jackson.core:jackson-databind:
2.9.2 -> 2.10.0
No No Known Exploit
high severity Deserialization of Untrusted Data
SNYK-JAVA-COMFASTERXMLJACKSONCORE-564888
com.fasterxml.jackson.core:jackson-databind:
2.9.2 -> 2.10.0
No No Known Exploit
high severity Deserialization of Untrusted Data
SNYK-JAVA-COMFASTERXMLJACKSONCORE-72445
com.fasterxml.jackson.core:jackson-databind:
2.9.2 -> 2.10.0
No No Known Exploit
high severity Deserialization of Untrusted Data
SNYK-JAVA-COMFASTERXMLJACKSONCORE-72446
com.fasterxml.jackson.core:jackson-databind:
2.9.2 -> 2.10.0
No No Known Exploit
high severity Deserialization of Untrusted Data
SNYK-JAVA-COMFASTERXMLJACKSONCORE-72447
com.fasterxml.jackson.core:jackson-databind:
2.9.2 -> 2.10.0
No No Known Exploit
high severity Deserialization of Untrusted Data
SNYK-JAVA-COMFASTERXMLJACKSONCORE-72448
com.fasterxml.jackson.core:jackson-databind:
2.9.2 -> 2.10.0
No No Known Exploit
high severity Deserialization of Untrusted Data
SNYK-JAVA-COMFASTERXMLJACKSONCORE-72449
com.fasterxml.jackson.core:jackson-databind:
2.9.2 -> 2.10.0
No No Known Exploit
high severity Deserialization of Untrusted Data
SNYK-JAVA-COMFASTERXMLJACKSONCORE-72450
com.fasterxml.jackson.core:jackson-databind:
2.9.2 -> 2.10.0
No No Known Exploit
high severity Deserialization of Untrusted Data
SNYK-JAVA-COMFASTERXMLJACKSONCORE-72451
com.fasterxml.jackson.core:jackson-databind:
2.9.2 -> 2.10.0
No No Known Exploit
high severity Deserialization of Untrusted Data
SNYK-JAVA-COMFASTERXMLJACKSONCORE-72882
com.fasterxml.jackson.core:jackson-databind:
2.9.2 -> 2.10.0
No No Known Exploit
high severity Deserialization of Untrusted Data
SNYK-JAVA-COMFASTERXMLJACKSONCORE-72883
com.fasterxml.jackson.core:jackson-databind:
2.9.2 -> 2.10.0
No No Known Exploit
high severity Deserialization of Untrusted Data
SNYK-JAVA-COMFASTERXMLJACKSONCORE-72884
com.fasterxml.jackson.core:jackson-databind:
2.9.2 -> 2.10.0
No No Known Exploit

Check the changes in this Merge Request to ensure they won't cause issues with your project.


Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:

🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

Merge request reports