Community
Products
Jira
Questions
Jira Rest Java Client - JRJC - CVE-2019-10172

Jira Rest Java Client - JRJC - CVE-2019-10172

The JRJC uses Jackson 1.9 which is vulnerable due to CVE-2019-10172 and has no patched version of Jackson 1.9 to upgrade to. Any way to mitigate this? Any plans to upgrade to Jackson 2.x

1 answer

0 votes

Hi!

one of the option make a fork and do changes and make a PR,

https://bitbucket.org/atlassian/jira-rest-java-client/src/master/

Cheers,

Gonchik

You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.

Comment

Suggest an answer

Was this helpful?

Thanks!

Jira

DEPLOYMENT TYPE

CLOUD

PRODUCT PLAN

PREMIUM

Community showcase

Understanding Issue Types in Jira
What are Issues in Jira
What’s the difference between a kanban board and a Scrum board?
New Portfolio Cloud Experience Beta
Announcement: Project Level Email Notifications for next-gen projects on JSW/JSD

Product Q&A

Community resources

Support

Top groups

Community resources

Support

Learn

Community resources

Support

Events

Community resources

Support

Get product advice from experts

Join a community group

Advance your career with learning paths

Earn badges and rewards

Connect and share ideas at events

Jira Rest Java Client - JRJC - CVE-2019-10172

1 answer

Suggest an answer

Was this helpful?

Thanks!

DEPLOYMENT TYPE

PRODUCT PLAN

TAGS

Community showcase

Atlassian Community Events