* Update docs/submodules/music.git from branch 'elalto'
to
da5ad5ecc57dd98654c96eb30965e09bbd22dc48
- El Alto Release Notes
Change-Id: I6703f52383d9901cb1e08b5ce92fb6e66b454cfa
Issue-ID: MUSIC-496
Signed-off-by: Tschaen, Brendan <ctschaen@att.com>
- Jackson Faster-xml vulnerability.
CVE-2019-14439 Information Disclosure Vulnerability
FasterXML Jackson-databind is prone to an information-disclosure
vulnerability that occurs due to a polymorphic typing issue.
Specifically, this issue occurs when an externally exposed JSON endpoint
has default typing enabled and has logback jar in the classpath.
An attacker can exploit this issue to obtain sensitive information that
may aid in further attacks.
Issue-ID: MUSIC-504
Signed-off-by: Thomas Nelson (arthurdent3) <nelson24@att.com>
Signed-off-by: Thomas Nelson (arthurdent3) <nelson24@att.com>
Change-Id: I2c31986ff2d792d482f84406e96c47dbf652f32f
-Subproject commit f96ce582847ffde86516d131fd3857023b8ae66a
+Subproject commit da5ad5ecc57dd98654c96eb30965e09bbd22dc48