The jackson-databind package provides general data-binding functionality for Jackson, which works on top of Jackson core streaming API. Security Fix: * jackson-databind: Serialization gadgets in org.aoju.bus.proxy.provider.*.RmiProvider * jackson-databind: Serialization gadgets in javax.swing.JEditorPane * jackson-databind: Serialization gadgets in org.apache.activemq.jms.pool.XaPooledConnectionFactory * jackson-databind: Serialization gadgets in org.apache.commons.proxy.provider.remoting.RmiProvider * jackson-databind: Serialization gadgets in org.apache.openjpa.ee.WASRegistryManagedRuntime For more details about the security issue, including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page listed in the References section.