[ https://issues.apache.org/jira/browse/DRILL-8332?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17617610#comment-17617610 ]
ASF GitHub Bot commented on DRILL-8332: --------------------------------------- pjfanning opened a new pull request, #2677: URL: https://github.com/apache/drill/pull/2677 ## Description upgrade jackson due to issue in gradle module of previous release ## Documentation (Please describe user-visible changes similar to what should appear in the Drill documentation.) ## Testing (Please describe how this PR has been tested.) > upgrade to jackson 2.13.4.20221013 > ---------------------------------- > > Key: DRILL-8332 > URL: https://issues.apache.org/jira/browse/DRILL-8332 > Project: Apache Drill > Issue Type: Improvement > Reporter: PJ Fanning > Priority: Major > > * [https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42003] > * [https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42004] > * both fixes have been backported (the CVEs themselves need to be updated to > reflect this) > There was a gradle module issue in 2.13.4.20221012 so upgrading to > 2.13.4.20221013 -- This message was sent by Atlassian Jira (v8.20.10#820010)