Fix #1599 for 2.7(.10)

commit: 6ce32ffd18facac6abdbbf559c817b47fcb622c1 [log] [tgz]
author: Tatu Saloranta <tatu.saloranta@iki.fi> Thu Apr 13 15:08:10 2017 -0700
committer: Tatu Saloranta <tatu.saloranta@iki.fi> Thu Apr 13 15:08:10 2017 -0700
tree: 58a0fabd5b6427b4c4dfd65ad93067b07c89ed6f
parent: 28ec8a47d381311818f805ae76bf84da30f516f9 [diff] [blame]
diff --git a/release-notes/VERSION b/release-notes/VERSION
index 573e710..62f7465 100644
--- a/release-notes/VERSION
+++ b/release-notes/VERSION

@@ -6,6 +6,8 @@
 
 2.7.10 (not yet released)
 
+#1599: Jackson Deserializer security vulnerability
+ (reported by ayound@github)
 - Minor robustification of method resolution in `AnnotatedClass`
 
 2.7.9 (04-Feb-2017)
commit	6ce32ffd18facac6abdbbf559c817b47fcb622c1	[log] [tgz]
author	Tatu Saloranta <tatu.saloranta@iki.fi>	Thu Apr 13 15:08:10 2017 -0700
committer	Tatu Saloranta <tatu.saloranta@iki.fi>	Thu Apr 13 15:08:10 2017 -0700
tree	58a0fabd5b6427b4c4dfd65ad93067b07c89ed6f
parent	28ec8a47d381311818f805ae76bf84da30f516f9 [diff] [blame]