Skip to content

Commit

Permalink
Bump jackson-databind from 2.9.10.4 to 2.9.10.5 in /metrics-json (#1610)
Browse files Browse the repository at this point in the history 
This addresses various security fixes:

* CVE-2020-14062: GHSA-c265-37vj-cwcc
* CVE-2020-14195: GHSA-mc6h-4qgp-37qh
* CVE-2020-14060: GHSA-j823-4qch-3rgm
* CVE-2020-14061: GHSA-c2q3-4qrh-fm48

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Artem Prigoda <arteamon@gmail.com>
  • Loading branch information
@dependabot @arteam
dependabot[bot] and arteam authored Jun 23, 2020
1 parent f9d1b18 commit 85db0d7
Show file tree
Hide file tree
Showing 2 changed files with 2 additions and 2 deletions.
2 changes: 1 addition & 1 deletion metrics-json/pom.xml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -17,7 +17,7 @@

<properties>
<javaModuleName>com.codahale.metrics.json</javaModuleName>
<jackson.version>2.9.10.4</jackson.version>
<jackson.version>2.9.10.5</jackson.version>
</properties>

<dependencyManagement>
Expand Down
2 changes: 1 addition & 1 deletion metrics-servlets/pom.xml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -21,7 +21,7 @@
<jetty9.version>9.4.30.v20200611</jetty9.version>
<papertrail.profiler.version>1.1.1</papertrail.profiler.version>
<servlet.version>3.1.0</servlet.version>
<jackson.version>2.9.10.4</jackson.version>
<jackson.version>2.9.10.5</jackson.version>
</properties>

<dependencyManagement>
Expand Down

0 comments on commit 85db0d7

Please sign in to comment.