[
https://issues.apache.org/jira/browse/KAFKA-13658?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17499456#comment-17499456
]
Bruno Cadonna edited comment on KAFKA-13658 at 3/1/22, 11:07 AM:
-----------------------------------------------------------------
[~pratimsc] Have a look at https://kafka.apache.org/contributing
Would be great if you could do the PR soon since code freeze for 3.2.0 is end
of this month.
Thank you for your interest!
Looking forward to the PR!
was (Author: cadonna):
[~pratimsc] Have a look at https://kafka.apache.org/contributing
Would be great if you could do the PR soon since code freeze for 3.2.0 is end
of this month.
> Upgrade vulnerable dependencies jan 2022
> ----------------------------------------
>
> Key: KAFKA-13658
> URL: https://issues.apache.org/jira/browse/KAFKA-13658
> Project: Kafka
> Issue Type: Bug
> Affects Versions: 2.8.1
> Reporter: Shivakumar
> Priority: Major
> Labels: secutiry
>
> |Packages|Package Version|CVSS|Fix Status|
> |com.fasterxml.jackson.core_jackson-databind| 2.10.5.1| 7.5| fixed in 2.14,
> 2.13.1, 2.12.6|
> | | | | |
> Our security scan detected the above vulnerabilities
> upgrade to correct versions for fixing vulnerabilities
--
This message was sent by Atlassian Jira
(v8.20.1#820001)
