[ https://issues.apache.org/jira/browse/DRILL-8459?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17781127#comment-17781127 ]
ASF GitHub Bot commented on DRILL-8459: --------------------------------------- pjfanning opened a new pull request, #2841: URL: https://github.com/apache/drill/pull/2841 # [DRILL-8459](https://issues.apache.org/jira/browse/DRILL-8459): bump avro to 1.11.3 ## Description CVE issue ## Documentation (Please describe user-visible changes similar to what should appear in the Drill documentation.) ## Testing (Please describe how this PR has been tested.) > bump avro to 1.11.3 due to cve > ------------------------------ > > Key: DRILL-8459 > URL: https://issues.apache.org/jira/browse/DRILL-8459 > Project: Apache Drill > Issue Type: Sub-task > Reporter: PJ Fanning > Priority: Major > > https://github.com/apache/drill/security/dependabot/49 -- This message was sent by Atlassian Jira (v8.20.10#820010)