Skip to content

HBASE-23075 Upgrade jackson version #660

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Sep 26, 2019
Merged

HBASE-23075 Upgrade jackson version #660

merged 1 commit into from
Sep 26, 2019

Conversation

@SteNicholas
Copy link
Member

Jackson security issues:
A Polymorphic Typing issue was discovered in FasterXML jackson-databind before 2.9.10. It is related to com.zaxxer.hikari.HikariDataSource. This is a different vulnerability than CVE-2019-14540.
https://nvd.nist.gov/vuln/detail/CVE-2019-16335
A Polymorphic Typing issue was discovered in FasterXML jackson-databind before 2.9.10. It is related to com.zaxxer.hikari.HikariConfig.
https://nvd.nist.gov/vuln/detail/CVE-2019-14540

Apache9
Apache9 approved these changes Sep 25, 2019
View reviewed changes
Copy link
Contributor

@Apache9 Apache9 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

+1.

@Apache-HBase
Copy link

💔 -1 overall

Vote Subsystem Runtime Comment
💙 reexec 0m 35s Docker mode activated.
_ Prechecks _
💚 dupname 0m 0s No case conflicting files found.
💚 @author 0m 0s The patch does not contain any @author tags.
💛 test4tests 0m 0s The patch doesn't appear to include any new or modified tests. Please justify why no new tests are needed for this patch. Also please list what manual steps were performed to verify this patch.
_ master Compile Tests _
💚 mvninstall 5m 30s master passed
💚 compile 2m 59s master passed
💚 shadedjars 4m 30s branch has no errors when building our shaded downstream artifacts.
💚 javadoc 2m 52s master passed
_ Patch Compile Tests _
💚 mvninstall 4m 57s the patch passed
💚 compile 3m 0s the patch passed
💚 javac 3m 0s the patch passed
💚 whitespace 0m 0s The patch has no whitespace issues.
💚 xml 0m 1s The patch has no ill-formed XML file.
💚 shadedjars 4m 33s patch has no errors when building our shaded downstream artifacts.
💚 hadoopcheck 15m 45s Patch does not cause any errors with Hadoop 2.8.5 2.9.2 or 3.1.2.
💚 javadoc 2m 51s the patch passed
_ Other Tests _
💔 unit 175m 2s root in the patch failed.
💚 asflicense 0m 41s The patch does not generate ASF License warnings.
229m 28s
Subsystem Report/Notes
Docker Client=19.03.1 Server=19.03.1 base: https://builds.apache.org/job/HBase-PreCommit-GitHub-PR/job/PR-660/1/artifact/out/Dockerfile
GITHUB PR #660
Optional Tests dupname asflicense javac javadoc unit shadedjars hadoopcheck xml compile
uname Linux 78532474be7c 4.15.0-60-generic #67-Ubuntu SMP Thu Aug 22 16:55:30 UTC 2019 x86_64 GNU/Linux
Build tool maven
Personality /home/jenkins/jenkins-slave/workspace/HBase-PreCommit-GitHub-PR_PR-660/out/precommit/personality/provided.sh
git revision master / 52f5a85
Default Java 1.8.0_181
unit https://builds.apache.org/job/HBase-PreCommit-GitHub-PR/job/PR-660/1/artifact/out/patch-unit-root.txt
Test Results https://builds.apache.org/job/HBase-PreCommit-GitHub-PR/job/PR-660/1/testReport/
Max. process+thread count 4456 (vs. ulimit of 10000)
modules C: . U: .
Console output https://builds.apache.org/job/HBase-PreCommit-GitHub-PR/job/PR-660/1/console
versions git=2.11.0 maven=2018-06-17T18:33:14Z)
Powered by Apache Yetus 0.11.0 https://yetus.apache.org

This message was automatically generated.

@Apache9 Apache9 merged commit ea24ea7 into apache:master Sep 26, 2019
asfgit pushed a commit that referenced this pull request Sep 26, 2019
@SteNicholas @Apache9
HBASE-23075 Upgrade jackson version (#660)
f99a9a8 
Signed-off-by: Duo Zhang <[email protected]>
asfgit pushed a commit that referenced this pull request Sep 26, 2019
@SteNicholas @Apache9
HBASE-23075 Upgrade jackson version (#660)
5675781 
Signed-off-by: Duo Zhang <[email protected]>
asfgit pushed a commit that referenced this pull request Sep 26, 2019
@SteNicholas @Apache9
HBASE-23075 Upgrade jackson version (#660)
7ac1f27 
Signed-off-by: Duo Zhang <[email protected]>
infraio pushed a commit to infraio/hbase that referenced this pull request Aug 17, 2020
@SteNicholas
HBASE-23075 Upgrade jackson version (apache#660)
7385407 
Signed-off-by: Duo Zhang <[email protected]>
symat pushed a commit to symat/hbase that referenced this pull request Feb 17, 2021
@SteNicholas
HBASE-23075 Upgrade jackson version (apache#660)
5bb8287 
Signed-off-by: Duo Zhang <[email protected]>
(cherry picked from commit 5675781)

Change-Id: I20b01f4020d31b41ed21ee5ccf4f0077ba48f9e3
sanjeet006py pushed a commit to sanjeet006py/hbase that referenced this pull request Sep 26, 2025
@mnpoonia
@W-18935922 HBASE-27904: A random data generator tool leveraging hbas…
1431a61 
…e bulk load (apache#5294) (apache#660)
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@Apache9 Apache9 Apache9 approved these changes

+1 more reviewer

@maoling maoling maoling approved these changes

Reviewers whose approvals may not affect merge requirements

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@SteNicholas @Apache-HBase @Apache9 @maoling