I’m using Keycloak v20.0.3 where observed that snakeyaml - org.yaml.snakeyaml-1.33.jar where critical CVE has reported (NVD - CVE-2022-1471). I’m looking to upgrader this Jar with 2.0 but getting versioning incompatibility error below. Has anyone done this upgrade?. how do we solve this?
ERROR [org.keycloak.services.error.KeycloakErrorHandler] (executor-thread-1) Uncaught server error: java.lang.NoSuchMethodError: org.yaml.snakeyaml.constructor.SafeConstructor: method ()V not found.