[jira] [Commented] (KAFKA-20241) Jackson core vulnerability GHSA-72hv-8253-57qq

Aleksei Veremeev (Jira) Tue, 03 Mar 2026 12:00:10 -0800


    [ 
https://issues.apache.org/jira/browse/KAFKA-20241?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=18062549#comment-18062549
 ]


Aleksei Veremeev commented on KAFKA-20241:
------------------------------------------

[PR# 21622|https://github.com/apache/kafka/pull/21622] losed as duplicate

LICENSE-binary is added to [PR# 
21621|https://github.com/apache/kafka/pull/21621]

> Jackson core vulnerability GHSA-72hv-8253-57qq
> ----------------------------------------------
>
>                 Key: KAFKA-20241
>                 URL: https://issues.apache.org/jira/browse/KAFKA-20241
>             Project: Kafka
>          Issue Type: Bug
>    Affects Versions: 4.2.0, 4.1.1
>            Reporter: Aleksei Veremeev
>            Priority: Major
>
> Jackson core vulnerability 
> [https://www.miggo.io/vulnerability-database/cve/GHSA-72hv-8253-57qq] that 
> affects most versions of Apache Kafka, including the recently released 4.2.
>  
> I will back with PR later today



--
This message was sent by Atlassian Jira
(v8.20.10#820010)

[jira] [Commented] (KAFKA-20241) Jackson core vulnerability GHSA-72hv-8253-57qq

Reply via email to