Update of jackson-databind-2.9.6.jar

Hello all,

Can you please update the library jackson-databind-2.9.6.jar to better version in your future releases ?

It comming in the scanners with Vulnerability Jackson RCE (CVE-2019-14361, CVE-2019-14439)


Atleast in aquasec scan and aswell security scan in clouds.

Thank you.


Hi @Sinedko. We have done it in current sprint. It’ll be released together with ROR 1.25.0.

But you can test the pre-build if you wish:


1 Like

Thank you very much for your fast reply, i tested this pre-build and its passing in scans, so it helped.

Will dowload the new version when available.

1 Like