Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Upgrade to SnakeYAML to address CVE-2017-18640
SnakeYAML < 1.26 is vulnerable to a Billion Laughs attack (denial of service). * https://nvd.nist.gov/vuln/detail/CVE-2017-18640 * https://bitbucket.org/asomov/snakeyaml/issues/377 Refs FasterXML/jackson-dataformats-text#187 Refs #3223
- Loading branch information