Security hot fix for Jackson Databind

### Security
- [CVE-2019-12086](https://nvd.nist.gov/vuln/detail/CVE-2019-12086).

Author: mmallis87

CHANGELOG.md

@@ -1,6 +1,10 @@
 # DocuSign Java Client Changelog
 See [DocuSign Support Center](https://support.docusign.com/en/releasenotes/) for Product Release Notes.
 
+## [v2.10.1] - Jackson library patch - 2019-05-23
+### Security
+- [CVE-2019-12086](https://nvd.nist.gov/vuln/detail/CVE-2019-12086).
+
 ## [v2.10.0] - eSignature API v19.1.02 - 2019-05-16
 ### Changed
 * The SDK now supports version 19.1.02 of the DocuSign eSignature API.

README.md

@@ -34,7 +34,7 @@ Note: DocuSign uses **Eclipse** with **Maven** for testing purposes.
 <dependency>
   <groupId>com.docusign</groupId>
   <artifactId>docusign-esign-java</artifactId>
-  <version>2.10.0</version>
+  <version>2.10.1</version>
 </dependency>
 ```
 
@@ -47,10 +47,10 @@ This client has the following external dependencies:
 - swagger:swagger-annotations:jar:1.5.8
 - sun.jersey:jersey-client:jar:1.19.1
 - sun.jersey.contribs:jersey-multipart:jar:1.19.1
-- fasterxml.jackson.core:jackson-core:jar:2.9.8
-- fasterxml.jackson.core:jackson-annotations:jar:2.9.8
-- fasterxml.jackson.core:jackson-databind:jar:2.9.8
-- fasterxml.jackson.jaxrs:jackson-jaxrs-json-provider:jar:2.9.8
+- fasterxml.jackson.core:jackson-core:jar:2.9.9
+- fasterxml.jackson.core:jackson-annotations:jar:2.9.9
+- fasterxml.jackson.core:jackson-databind:jar:2.9.9
+- fasterxml.jackson.jaxrs:jackson-jaxrs-json-provider:jar:2.9.9
 - fasterxml.jackson.datatype:jackson-datatype-joda:jar:2.1.5
 - joda-time:joda-time:jar:2.9.3
 - brsanthu:migbase64:jar:2.2

build.gradle

@@ -2,7 +2,7 @@ apply plugin: 'idea'
 apply plugin: 'eclipse'
 
 group = 'com.docusign'
-version = '2.10.0'
+version = '2.10.1'
 
 buildscript {
     repositories {
@@ -102,7 +102,7 @@ task getDeps(type: Copy) {
 
 ext {
     swagger_annotations_version = "1.5.8"
-    jackson_version = "2.9.8"
+    jackson_version = "2.9.9"
     jersey_version = "1.19.1"
     jodatime_version = "2.9.3"
     junit_version = "4.12"

pom.xml

@@ -4,7 +4,7 @@
   <artifactId>docusign-esign-java</artifactId>
   <packaging>jar</packaging>
   <name>docusign-esign-java</name>
-  <version>2.10.0</version>
+  <version>2.10.1</version>
   <description>The official DocuSign eSignature JAVA client is based on version 2 of the DocuSign REST API and provides libraries for JAVA application integration. It is recommended that you use this version of the library for new development.</description>
   <url>https://www.docusign.com/developer-center</url>
 
@@ -283,7 +283,7 @@
     <project.build.sourceEncoding>UTF-8</project.build.sourceEncoding>
     <swagger-annotations-version>1.5.8</swagger-annotations-version>
     <jersey-version>1.19.1</jersey-version>
-    <jackson-version>2.9.8</jackson-version>
+    <jackson-version>2.9.9</jackson-version>
     <jodatime-version>2.9.3</jodatime-version>
     <maven-plugin-version>1.0.0</maven-plugin-version>
     <junit-version>4.12</junit-version>

src/main/java/com/docusign/esign/client/ApiClient.java

@@ -127,7 +127,7 @@ public ApiClient() {
     mapper.setDateFormat((DateFormat) dateFormat.clone());
 
     // Set default User-Agent.
-    setUserAgent("Swagger-Codegen/2.10.0/java");
+    setUserAgent("Swagger-Codegen/2.10.1/java");
 
     // Setup authentications (key: authentication name, value: authentication).
     authentications = new HashMap<String, Authentication>();

target/classes/com/docusign/esign/client/ApiClient.class

@@ -1,4 +1,4 @@
 #Created by Apache Maven 3.6.0
-version=2.10.0
+version=2.10.1
 groupId=com.docusign
 artifactId=docusign-esign-java

target/maven-archiver/pom.properties

@@ -1,4 +1,4 @@
 -------------------------------------------------------------------------------
 Test set: SdkUnitTests
 -------------------------------------------------------------------------------
-Tests run: 16, Failures: 0, Errors: 0, Skipped: 0, Time elapsed: 11.365 s - in SdkUnitTests
+Tests run: 16, Failures: 0, Errors: 0, Skipped: 0, Time elapsed: 9.728 s - in SdkUnitTests