Jboss EAP Deserialization of Untrusted Data Vulnerability - CVE-2019-10202

A series of deserialization vulnerabilities have been discovered in Codehaus 1.9.x implemented in EAP 7. This CVE fixes CVE-2017-17485 CVE-2017-7525 CVE-2017-15095 CVE-2018-5968 CVE-2018-7489 CVE-2018-1000873 CVE-2019-12086 reported for FasterXML jackson-databind by implementing a whitelist approach that will mitigate these vulnerabilities and future ones alike.