On 12/6/2017 11:03 PM, upendar devu wrote: > since the vulnerability is found in the latest > jackson library. but we are using version 2.7 and not the latest version > ; do you think the the issue still exist with version 2.7 ?
Unfortunately I'm not in detail. You may ask at [1] as a comment :) [1] https://github.com/FasterXML/jackson-databind/issues/1599#issuecomment-342983770