[FLINK-33238][Formats/Avro] Upgrade used AVRO version to 1.11.3 to mi…

…tigate scanners flagging Flink or the Flink Kafka connector as vulnerable for CVE-2023-39410
apache · Oct 11, 2023 · bc9b252 · bc9b252
1 parent b0f15f2
commit bc9b252
Showing 1 changed file with 1 addition and 1 deletion.
diff --git a/pom.xml b/pom.xml
@@ -68,7 +68,7 @@ under the License.
         <scala-reflect.version>2.12.7</scala-reflect.version>
         <scala-library.version>2.12.7</scala-library.version>
         <snappy-java.version>1.1.10.5</snappy-java.version>
-        <avro.version>1.11.1</avro.version>
+        <avro.version>1.11.3</avro.version>
 
         <japicmp.skip>false</japicmp.skip>
         <japicmp.referenceVersion>1.17.0</japicmp.referenceVersion>