From c56f8ae31ed39f9accf1701521555b85b5566fb8 Mon Sep 17 00:00:00 2001 From: Andriy Redko Date: Fri, 14 Oct 2022 13:26:39 -0400 Subject: [PATCH] Update Jackson Databind to 2.13.4.2 (addressing CVE-2022-42003) (#240) Signed-off-by: Andriy Redko Signed-off-by: Andriy Redko --- java-client/build.gradle.kts | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/java-client/build.gradle.kts b/java-client/build.gradle.kts index a707131292..307c75393b 100644 --- a/java-client/build.gradle.kts +++ b/java-client/build.gradle.kts @@ -139,7 +139,7 @@ dependencies { val opensearchVersion = "2.3.0" val jacksonVersion = "2.13.4" - val jacksonDatabindVersion = "2.13.4" + val jacksonDatabindVersion = "2.13.4.2" // Apache 2.0 implementation("org.opensearch.client", "opensearch-rest-client", opensearchVersion)