Use jdk8 classifier for hsqldb 2.7.x

thehyve · Oct 26, 2023 · 0ed7a93 · 0ed7a93
1 parent 290f9f2
commit 0ed7a93
Showing 1 changed file with 2 additions and 5 deletions.
diff --git a/rabbit-core/pom.xml b/rabbit-core/pom.xml
@@ -123,14 +123,11 @@
             <artifactId>ucanaccess</artifactId>
             <version>5.0.1</version>
         </dependency>
-        <!-- ucanaccess depends on hsqldb. It's being kept at version 2.5.x to maintain Java 1,8 compatibility,
-             this does imply that the following CVE is included in the package: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-41853,
-             but since the project does not process unchecked SQL, this is not considered a threat (also, it would only affect users
-             of MS-Access) -->
         <dependency>
             <groupId>org.hsqldb</groupId>
             <artifactId>hsqldb</artifactId>
-            <version>2.5.2</version>
+            <version>2.7.2</version>
+	    <classifier>jdk8</classifier>
         </dependency>
         <dependency>
             <groupId>com.amazon.redshift</groupId>