[
https://issues.apache.org/jira/browse/DRILL-8332?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17617610#comment-17617610
]
ASF GitHub Bot commented on DRILL-8332:
---
pjfanning opened a new pull request, #2677:
URL: https://github.com/apache/drill/pull/2677
## Description
upgrade jackson due to issue in gradle module of previous release
## Documentation
(Please describe user-visible changes similar to what should appear in the
Drill documentation.)
## Testing
(Please describe how this PR has been tested.)
> upgrade to jackson 2.13.4.20221013
> --
>
> Key: DRILL-8332
> URL: https://issues.apache.org/jira/browse/DRILL-8332
> Project: Apache Drill
> Issue Type: Improvement
>Reporter: PJ Fanning
>Priority: Major
>
> * [https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42003]
> * [https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42004]
> * both fixes have been backported (the CVEs themselves need to be updated to
> reflect this)
> There was a gradle module issue in 2.13.4.20221012 so upgrading to
> 2.13.4.20221013
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
