Iam using elasitcsearch 6.1.4 with SG 22.3. Iam trying to patch the following vulnerability
|FasterXML jackson-databind 2.x before 2.9.8 might allow attackers to have unspecified impact by leveraging failure to block the jboss-common-core class from polymorphic deserialization.|
Has anyone tried with 2.9.8 jar? Would it be compatible with Searchguard 22.3?