Y
Hacker News
new
|
ask
|
show
|
jobs
by
pythonistic
3881 days ago
I had to backport a fix for a similar vulnerability in a Seam installation three years ago. The solution at the time was to limit the directories and sources from which serialized object representations could be read.