• Markus Koschany's avatar
    Import Debian changes 2.9.8-3+deb10u1 · edc42295
    Markus Koschany authored
    jackson-databind (2.9.8-3+deb10u1) buster-security; urgency=high
    
      * Fix CVE-2019-12384, CVE-2019-14439, CVE-2019-14540, CVE-2019-16335,
        CVE-2019-16942 and CVE-2019-16943. Several deserialization flaws
        were discovered in jackson-databind which could allow an
        unauthenticated user to perform code execution. The issue was
        resolved by extending the blacklist and blocking more classes from
        polymorphic deserialization.
    Signed-off-by: Ritesh Raj Sarraf's avatarRitesh Raj Sarraf <ritesh.sarraf@collabora.com>
    edc42295
Name
Last commit
Last update
.github Loading commit data...
attic Loading commit data...
debian Loading commit data...
release-notes Loading commit data...
src Loading commit data...
.gitattributes Loading commit data...
.gitignore Loading commit data...
.travis.yml Loading commit data...
README.md Loading commit data...
create-test-report.sh Loading commit data...
pom.xml Loading commit data...
profile.sh Loading commit data...
run.sh Loading commit data...