Deserialization

What are Deserialization security vulnerabilities and how do you fix them?