Johannes/gson-comments
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
e6fae590cf
gson-comments/gson/src/test/java/com
History
Marcono1234 e6fae590cf
Prevent Java deserialization of internal classes (#1991) 
Adversaries might be able to forge data which can be abused for DoS attacks.
These classes are already writing a replacement JDK object during serialization
for a long time, so this change should not cause any issues.
2021-10-13 10:14:57 -07:00
..
google/gson Prevent Java deserialization of internal classes (#1991) 2021-10-13 10:14:57 -07:00