[jira] [Created] (FLINK-37682) Upgrade Jackson Lib to Address CVE-2023-35116

Atul Sharma (Jira) Tue, 15 Apr 2025 09:02:17 -0700

Atul Sharma created FLINK-37682:
-----------------------------------

             Summary: Upgrade Jackson Lib to Address CVE-2023-35116 
                 Key: FLINK-37682
                 URL: https://issues.apache.org/jira/browse/FLINK-37682
             Project: Flink
          Issue Type: Improvement
          Components: Kubernetes Operator
            Reporter: Atul Sharma



Flink Kuberenetes Operator uses jackson with 2.15.0 and has CVE-2023-35116:

CVE-2023-35116: jackson-databind package versions before 2.15.2 are vulnerable 
to Denial of Service (DoS)
https://nvd.nist.gov/vuln/detail/cve-2023-35116



--
This message was sent by Atlassian Jira
(v8.20.10#820010)

[jira] [Created] (FLINK-37682) Upgrade Jackson Lib to Address CVE-2023-35116

Reply via email to