Security update for snakeyaml
This update for snakeyaml fixes the following issues:
- Upgrade to 1.28
- CVE-2017-18640: The Alias feature allows entity expansion during a load operation (bsc#1159488, bsc#1186088)
This update was imported from the SUSE:SLE-15-SP2:Update update project.
-
Submitted by
Fridrich Strba (fstrba)
Fixed bugs
bnc#1186088
Java:packages/snakeyaml: CVE-2017-18640
bnc#1159488
VUL-0: CVE-2017-18640: snakeyaml: The Alias feature allows entity expansion during a load operation
