https://bugzilla.redhat.com/show_bug.cgi?id=1821315
--- Doc Text *updated* by Eric Christensen <sparks(a)redhat.com> ---
A flaw was found in jackson-databind 2.x in versions prior to 2.9.10.4. The interaction
between serialization gadgets and typing is mishandled. The highest threat from this
vulnerability is to data confidentiality and integrity as well as system availability.
--
You are receiving this mail because:
You are on the CC list for the bug.