It was discovered that Expat, an XML parsing C library, did not properly handled internal entities closing the doctype, potentially resulting in denial of service or information disclosure if a malformed XML file is processed.
– Update jackson-databind to version 2.9.9.3. – Update jackson-core to version 2.9.9. – Update jackson-annotations to version 2.9.9. – Update jackson-bom to version 2.9.9. Resolves CVE-2019-12086, CVE-2019-12384, CVE-2019-12814, CVE-2019-14379, and CVE-14439.
– Update jackson-databind to version 2.9.9.3. – Update jackson-core to version 2.9.9. – Update jackson-annotations to version 2.9.9. – Update jackson-bom to version 2.9.9. Resolves CVE-2019-12086, CVE-2019-12384, CVE-2019-12814, CVE-2019-14379, and CVE-14439.
59 queries. 8.5 mb Memory usage. 1.436 seconds.