[jira] [Commented] (CASSANDRA-17231) Upgrade cassandra-driver-core to 3.12.1

Michael Semb Wever (Jira) Mon, 07 Apr 2025 07:59:48 -0700


    [ 
https://issues.apache.org/jira/browse/CASSANDRA-17231?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17941610#comment-17941610
 ]


Michael Semb Wever commented on CASSANDRA-17231:
------------------------------------------------

committed 
https://github.com/apache/cassandra/commit/694a88bdbe9aa6a4773c99814da33e0a65030ab3
 

(fixVersion and CHANGES.txt will need to be bumped in cassandra-5.0 after the 
5.0.4 release, to be 5.0.5)

> Upgrade cassandra-driver-core to 3.12.1
> ---------------------------------------
>
>                 Key: CASSANDRA-17231
>                 URL: https://issues.apache.org/jira/browse/CASSANDRA-17231
>             Project: Apache Cassandra
>          Issue Type: Bug
>          Components: Dependencies
>            Reporter: Phyllis Li
>            Assignee: Phyllis Li
>            Priority: Normal
>              Labels: security
>             Fix For: 5.0.x, 5.x
>
>         Attachments: 
> ci_summary_thelastpickle_mck-17231-5.0_204.html.download.zip, 
> results_details_thelastpickle_mck-17231-5.0_204.tar.xz
>
>
> The current Cassandra driver version is 3.11.0, which uses a vulnerable 
> version of jackson-databind.
> We may want to switch to the re-branded com.datastax.oss:java-driver-core 
> 4.13.0.



--
This message was sent by Atlassian Jira
(v8.20.10#820010)

---------------------------------------------------------------------
To unsubscribe, e-mail: commits-unsubscr...@cassandra.apache.org
For additional commands, e-mail: commits-h...@cassandra.apache.org

[jira] [Commented] (CASSANDRA-17231) Upgrade cassandra-driver-core to 3.12.1

Reply via email to