From 3f848e6a7ca5971b9aa5e0e9d1c2aa397fb04c35 Mon Sep 17 00:00:00 2001
From: Chi Cao Minh <chi.caominh@imply.io>
Date: Fri, 21 Feb 2020 11:05:00 -0800
Subject: [PATCH] Suppress CVE-2020-8840 for htrace-core-4.0.1 (#9379)

CVE-2020-8840 was updated on 19 Feb 2020, which now gets flagged by the
security vulnerability scan. Since the CVE is for jackson-databind, via
htrace-core-4.0.1, it can be added to the existing list of security
vulnerability suppressions for that dependency.
---
 owasp-dependency-check-suppressions.xml | 1 +
 1 file changed, 1 insertion(+)

diff --git a/owasp-dependency-check-suppressions.xml b/owasp-dependency-check-suppressions.xml
index c456834baef..fbd96023f5a 100644
--- a/owasp-dependency-check-suppressions.xml
+++ b/owasp-dependency-check-suppressions.xml
@@ -197,5 +197,6 @@
     <cve>CVE-2019-17267</cve>
     <cve>CVE-2019-17531</cve>
     <cve>CVE-2019-20330</cve>
+    <cve>CVE-2020-8840</cve>
   </suppress>
 </suppressions>