mirror of
https://github.com/NationalSecurityAgency/ghidra
synced 2024-10-01 07:54:25 +00:00
Deserialization of Untrusted Data
introduced through: unknown:unknown@0.0.0 › com.google.code.gson:gson@2.8.6 Fix: Upgrade to com.google.code.gson:gson@2.8.9 Affected versions of this package are vulnerable to Deserialization of Untrusted Data via the writeReplace() method in internal classes, which may lead to DoS attacks.
This commit is contained in:
parent
7a45cf24f1
commit
8e98b28cc4
|
@ -19,7 +19,7 @@ eclipse.project.name = '_JsonDoclet'
|
|||
apply plugin: 'java-library'
|
||||
|
||||
dependencies {
|
||||
api "com.google.code.gson:gson:2.8.6"
|
||||
api "com.google.code.gson:gson@2.8.9"
|
||||
}
|
||||
|
||||
rootProject.createJsondocs.dependsOn jar
|
||||
|
|
Loading…
Reference in a new issue