com.fasterxml.jackson.core 2.9.9.1 has a vulnerability
Created by: muffato
Use case
See:
- https://github.com/Ensembl/ensembl-hive/network/alert/wrappers/java/pom.xml/com.fasterxml.jackson.core:jackson-databind/open
- https://nvd.nist.gov/vuln/detail/CVE-2019-14379
- https://nvd.nist.gov/vuln/detail/CVE-2019-14439
Description
Follow-up of #131. There could be more vulnerabilities, so I'm switching to an open interval to pick up the latest 2.9.9.* version
Possible Drawbacks
If applicable, describe any possible undesirable consequence of the changes.
Testing
Have you added/modified unit tests to test the changes?
Nothing to change.
Have you run the entire test suite and no regression was detected?
Yes