Upgrade com.fasterxml.jackson.core:jackson-databind to version 2.9.10.1, 2.8.11.5, 2.6.7.3 or higher.

curl vulnerabilities

Direct Vulnerabilities

Known vulnerabilities in the curl package. This does not include vulnerabilities belonging to this package’s dependencies.

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Vulnerability	Vulnerable Version
L Use After Free	<0:7.29.0-59.0.3.el7_9.2
M Arbitrary Code Injection	<0:7.29.0-59.0.1.el7_9.1
H Out-of-bounds Write	<0:7.29.0-54.0.5.el7_7.2
L Out-of-bounds Write	<0:7.29.0-57.0.1.el7
H Credentials Management	<0:7.29.0-51.0.1.el7
H Improper Input Validation	<0:7.29.0-51.0.1.el7
H Use After Free	<0:7.29.0-51.0.1.el7
H Out-of-bounds Write	<0:7.29.0-51.0.1.el7
H Out-of-bounds Write	<0:7.29.0-51.0.1.el7
H Double Free	<0:7.29.0-51.0.1.el7
H Double Free	<0:7.29.0-51.0.1.el7
H Resource Injection	<0:7.29.0-51.0.1.el7
H Out-of-bounds Read	<0:7.29.0-51.0.1.el7
H Improper Input Validation	<0:7.29.0-51.0.1.el7
H Out-of-bounds Read	<0:7.29.0-51.0.1.el7
L Out-of-bounds Read	<0:7.29.0-54.0.1.el7
L Integer Overflow or Wraparound	<0:7.29.0-51.0.1.el7_6.3
M CVE-2018-1000007	<0:7.29.0-51.el7
M Out-of-bounds Read	<0:7.29.0-51.el7
M Out-of-bounds Read	<0:7.29.0-51.el7
M Out-of-bounds Write	<0:7.29.0-51.el7
M NULL Pointer Dereference	<0:7.29.0-51.el7
M Out-of-Bounds	<0:7.29.0-42.el7_4.1
M Integer Overflow or Wraparound	<0:7.29.0-42.el7
M Improper Authentication	<0:7.29.0-35.el7
M Cryptographic Issues	<0:7.29.0-35.el7
M Improper Authorization	<0:7.29.0-35.el7
M CVE-2014-8150	<0:7.29.0-25.0.1.el7
M Information Exposure	<0:7.29.0-25.0.1.el7
M Improper Access Control	<0:7.29.0-25.0.1.el7
M Access Restriction Bypass	<0:7.29.0-25.0.1.el7
M Cryptographic Issues	<0:7.29.0-25.0.1.el7