[Snyk] Upgrade com.fasterxml.jackson.core:jackson-databind from 2.9.9 to 2.11.2 #2

snyk-bot · 2020-09-23T05:15:15Z

Snyk has created this PR to upgrade com.fasterxml.jackson.core:jackson-databind from 2.9.9 to 2.11.2.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

The recommended version is 23 versions ahead of your current version.
The recommended version was released 2 months ago, on 2020-08-02.

The recommended version fixes:

Issue	PriorityScore (*)	Exploit Maturity
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-608664	630/1000 Why? Has a fix available, CVSS 8.1	No Known Exploit
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-572316	630/1000 Why? Has a fix available, CVSS 8.1	No Known Exploit
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-572314	630/1000 Why? Has a fix available, CVSS 8.1	No Known Exploit
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-572300	630/1000 Why? Has a fix available, CVSS 8.1	No Known Exploit
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-570625	630/1000 Why? Has a fix available, CVSS 8.1	No Known Exploit
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-564888	630/1000 Why? Has a fix available, CVSS 8.1	No Known Exploit
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-564887	630/1000 Why? Has a fix available, CVSS 8.1	No Known Exploit
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-561587	630/1000 Why? Has a fix available, CVSS 8.1	No Known Exploit
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-561586	630/1000 Why? Has a fix available, CVSS 8.1	No Known Exploit
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-561585	630/1000 Why? Has a fix available, CVSS 8.1	No Known Exploit
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-561373	630/1000 Why? Has a fix available, CVSS 8.1	No Known Exploit
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-561362	630/1000 Why? Has a fix available, CVSS 8.1	No Known Exploit
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-560766	630/1000 Why? Has a fix available, CVSS 8.1	No Known Exploit
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-560762	630/1000 Why? Has a fix available, CVSS 8.1	No Known Exploit
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-559106	630/1000 Why? Has a fix available, CVSS 8.1	Proof of Concept
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-559094	630/1000 Why? Has a fix available, CVSS 8.1	Proof of Concept
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-548451	630/1000 Why? Has a fix available, CVSS 8.1	Proof of Concept
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-540500	630/1000 Why? Has a fix available, CVSS 8.1	No Known Exploit
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-472980	630/1000 Why? Has a fix available, CVSS 8.1	No Known Exploit
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-471943	630/1000 Why? Has a fix available, CVSS 8.1	No Known Exploit
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-469676	630/1000 Why? Has a fix available, CVSS 8.1	No Known Exploit
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-469674	630/1000 Why? Has a fix available, CVSS 8.1	No Known Exploit
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-467016	630/1000 Why? Has a fix available, CVSS 8.1	No Known Exploit
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-467015	630/1000 Why? Has a fix available, CVSS 8.1	No Known Exploit
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-467014	630/1000 Why? Has a fix available, CVSS 8.1	No Known Exploit
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-455617	630/1000 Why? Has a fix available, CVSS 8.1	No Known Exploit
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-450917	630/1000 Why? Has a fix available, CVSS 8.1	No Known Exploit
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-450207	630/1000 Why? Has a fix available, CVSS 8.1	No Known Exploit
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-1009829	630/1000 Why? Has a fix available, CVSS 8.1	No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs

…o 2.11.2 Snyk has created this PR to upgrade com.fasterxml.jackson.core:jackson-databind from 2.9.9 to 2.11.2. See this package in Maven Repository: https://mvnrepository.com/artifact/com.fasterxml.jackson.core/jackson-databind/ See this project in Snyk: https://app.snyk.io/org/the-bit-one/project/946e916e-7d32-407b-95bb-0f66b557dcc8?utm_source=github&utm_medium=upgrade-pr

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

[Snyk] Upgrade com.fasterxml.jackson.core:jackson-databind from 2.9.9 to 2.11.2 #2

[Snyk] Upgrade com.fasterxml.jackson.core:jackson-databind from 2.9.9 to 2.11.2 #2

Uh oh!

snyk-bot commented Sep 23, 2020

Uh oh!

Uh oh!

[Snyk] Upgrade com.fasterxml.jackson.core:jackson-databind from 2.9.9 to 2.11.2 #2

Are you sure you want to change the base?

[Snyk] Upgrade com.fasterxml.jackson.core:jackson-databind from 2.9.9 to 2.11.2 #2

Uh oh!

Conversation

snyk-bot commented Sep 23, 2020

Snyk has created this PR to upgrade com.fasterxml.jackson.core:jackson-databind from 2.9.9 to 2.11.2.

Uh oh!

Uh oh!