-
cdanger authored
https://nvd.nist.gov/vuln/detail/CVE-2018-5968 The issue and pull request has been submitted to Jongo project, but not yet part of a release: https://github.com/bguerout/jongo/issues/327 In the meantime, the fix is to force version of dependency jackson-databind to 2.9.4.
d09f8611