[Snyk] Security upgrade com.fasterxml.jackson.core:jackson-databind from 2.9.2 to 2.10.0
Snyk has created this PR to fix one or more vulnerable packages in the `maven` dependencies of this project.
Changes included in this Merge Request
- Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
- pom.xml
Vulnerabilities that will be fixed
With an upgrade:
| Severity | Issue | Upgrade | Breaking Change | Exploit Maturity |
|---|---|---|---|---|
 |
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-174736 |
com.fasterxml.jackson.core:jackson-databind: 2.9.2 -> 2.10.0 |
No | No Known Exploit |
|
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-32043 |
com.fasterxml.jackson.core:jackson-databind: 2.9.2 -> 2.10.0 |
No | No Known Exploit |
|
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-32044 |
com.fasterxml.jackson.core:jackson-databind: 2.9.2 -> 2.10.0 |
No | No Known Exploit |
|
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-32111 |
com.fasterxml.jackson.core:jackson-databind: 2.9.2 -> 2.10.0 |
No | No Known Exploit |
|
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-450207 |
com.fasterxml.jackson.core:jackson-databind: 2.9.2 -> 2.10.0 |
No | No Known Exploit |
|
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-450917 |
com.fasterxml.jackson.core:jackson-databind: 2.9.2 -> 2.10.0 |
No | No Known Exploit |
|
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-455617 |
com.fasterxml.jackson.core:jackson-databind: 2.9.2 -> 2.10.0 |
No | No Known Exploit |
|
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-467014 |
com.fasterxml.jackson.core:jackson-databind: 2.9.2 -> 2.10.0 |
No | No Known Exploit |
|
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-467015 |
com.fasterxml.jackson.core:jackson-databind: 2.9.2 -> 2.10.0 |
No | No Known Exploit |
|
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-467016 |
com.fasterxml.jackson.core:jackson-databind: 2.9.2 -> 2.10.0 |
No | No Known Exploit |
|
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-469674 |
com.fasterxml.jackson.core:jackson-databind: 2.9.2 -> 2.10.0 |
No | No Known Exploit |
|
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-469676 |
com.fasterxml.jackson.core:jackson-databind: 2.9.2 -> 2.10.0 |
No | No Known Exploit |
|
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-471943 |
com.fasterxml.jackson.core:jackson-databind: 2.9.2 -> 2.10.0 |
No | No Known Exploit |
|
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-472980 |
com.fasterxml.jackson.core:jackson-databind: 2.9.2 -> 2.10.0 |
No | No Known Exploit |
|
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-540500 |
com.fasterxml.jackson.core:jackson-databind: 2.9.2 -> 2.10.0 |
No | No Known Exploit |
|
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-548451 |
com.fasterxml.jackson.core:jackson-databind: 2.9.2 -> 2.10.0 |
No | Proof of Concept |
|
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-559094 |
com.fasterxml.jackson.core:jackson-databind: 2.9.2 -> 2.10.0 |
No | Proof of Concept |
|
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-559106 |
com.fasterxml.jackson.core:jackson-databind: 2.9.2 -> 2.10.0 |
No | Proof of Concept |
|
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-560762 |
com.fasterxml.jackson.core:jackson-databind: 2.9.2 -> 2.10.0 |
No | No Known Exploit |
|
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-560766 |
com.fasterxml.jackson.core:jackson-databind: 2.9.2 -> 2.10.0 |
No | No Known Exploit |
|
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-561362 |
com.fasterxml.jackson.core:jackson-databind: 2.9.2 -> 2.10.0 |
No | No Known Exploit |
|
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-561373 |
com.fasterxml.jackson.core:jackson-databind: 2.9.2 -> 2.10.0 |
No | No Known Exploit |
|
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-561585 |
com.fasterxml.jackson.core:jackson-databind: 2.9.2 -> 2.10.0 |
No | No Known Exploit |
|
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-561586 |
com.fasterxml.jackson.core:jackson-databind: 2.9.2 -> 2.10.0 |
No | No Known Exploit |
|
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-561587 |
com.fasterxml.jackson.core:jackson-databind: 2.9.2 -> 2.10.0 |
No | No Known Exploit |
|
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-564887 |
com.fasterxml.jackson.core:jackson-databind: 2.9.2 -> 2.10.0 |
No | No Known Exploit |
|
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-564888 |
com.fasterxml.jackson.core:jackson-databind: 2.9.2 -> 2.10.0 |
No | No Known Exploit |
|
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-72445 |
com.fasterxml.jackson.core:jackson-databind: 2.9.2 -> 2.10.0 |
No | No Known Exploit |
|
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-72446 |
com.fasterxml.jackson.core:jackson-databind: 2.9.2 -> 2.10.0 |
No | No Known Exploit |
|
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-72447 |
com.fasterxml.jackson.core:jackson-databind: 2.9.2 -> 2.10.0 |
No | No Known Exploit |
|
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-72448 |
com.fasterxml.jackson.core:jackson-databind: 2.9.2 -> 2.10.0 |
No | No Known Exploit |
|
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-72449 |
com.fasterxml.jackson.core:jackson-databind: 2.9.2 -> 2.10.0 |
No | No Known Exploit |
|
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-72450 |
com.fasterxml.jackson.core:jackson-databind: 2.9.2 -> 2.10.0 |
No | No Known Exploit |
|
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-72451 |
com.fasterxml.jackson.core:jackson-databind: 2.9.2 -> 2.10.0 |
No | No Known Exploit |
|
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-72882 |
com.fasterxml.jackson.core:jackson-databind: 2.9.2 -> 2.10.0 |
No | No Known Exploit |
|
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-72883 |
com.fasterxml.jackson.core:jackson-databind: 2.9.2 -> 2.10.0 |
No | No Known Exploit |
|
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-72884 |
com.fasterxml.jackson.core:jackson-databind: 2.9.2 -> 2.10.0 |
No | No Known Exploit |
Check the changes in this Merge Request to ensure they won't cause issues with your project.
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.
For more information: