summaryrefslogtreecommitdiffstats
path: root/vid-automation/pom.xml
diff options
context:
space:
mode:
authorAmichai Hemli <amichai.hemli@intl.att.com>2019-09-16 10:53:47 +0300
committerAmichai Hemli <amichai.hemli@intl.att.com>2019-09-16 12:49:06 +0300
commit98794615f346c753a94fa5f63f7cbc67792af4c1 (patch)
treed33cdb96d417d984988fe000dad22cf3b7eff6fd /vid-automation/pom.xml
parent69ea8f5b4c5165b12de7261bfb19625c6dc3d5be (diff)
Upgrade FasterXML/Jackson to version 2.9.9.3
FasterXML jackson-databind versions 2.x through 2.9.9.1 are vulnerable. we will use 2.9.9.3 for jackson-databind only Issue-ID: VID-640 Signed-off-by: Amichai Hemli <amichai.hemli@intl.att.com> Change-Id: I537cb83ad787522b75fdee59ffabb51def747096
Diffstat (limited to 'vid-automation/pom.xml')
-rw-r--r--vid-automation/pom.xml3
1 files changed, 2 insertions, 1 deletions
diff --git a/vid-automation/pom.xml b/vid-automation/pom.xml
index 81ec4a6d8..6f2ae22c2 100644
--- a/vid-automation/pom.xml
+++ b/vid-automation/pom.xml
@@ -9,6 +9,7 @@
<springframework.version>5.1.9.RELEASE</springframework.version>
<jersey.version>2.29</jersey.version>
<jackson.version>2.9.9</jackson.version>
+ <jackson.databind.version>2.9.9.3</jackson.databind.version>
<aspectj.version>1.8.10</aspectj.version>
<selenium.version>3.6.0</selenium.version>
<log4j.version>2.12.0</log4j.version>
@@ -161,7 +162,7 @@
<dependency>
<groupId>com.fasterxml.jackson.core</groupId>
<artifactId>jackson-databind</artifactId>
- <version>${jackson.version}</version>
+ <version>${jackson.databind.version}</version>
</dependency>
<dependency>
<groupId>commons-beanutils</groupId>