exasol · github-actions · Apr 10, 2024
diff --git a/doc/changes/changelog.md b/doc/changes/changelog.md
diff --git a/doc/changes/changes_2.0.3.md b/doc/changes/changes_2.0.3.md
@@ -0,0 +1,32 @@
+# Virtual Schema for Document Data in Files on Google Cloud Storage 2.0.3, released 2024-??-??
+
+Code name: Fixed vulnerabilities CVE-2024-23081, CVE-2024-23082
+
+## Summary
+
+This release fixes the following 2 vulnerabilities:
+
+### CVE-2024-23081 (CWE-476) in dependency `org.threeten:threetenbp:jar:1.6.8:compile`
+ThreeTen Backport v1.6.8 was discovered to contain a NullPointerException via the component org.threeten.bp.LocalDate::compareTo(ChronoLocalDate).
+#### References
+* https://ossindex.sonatype.org/vulnerability/CVE-2024-23081?component-type=maven&component-name=org.threeten%2Fthreetenbp&utm_source=ossindex-client&utm_medium=integration&utm_content=1.8.1
+* http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-23081
+* https://gist.github.com/LLM4IG/3cc9183dcd887020368a0bafeafec5e3
+
+### CVE-2024-23082 (CWE-190) in dependency `org.threeten:threetenbp:jar:1.6.8:compile`
+ThreeTen Backport v1.6.8 was discovered to contain an integer overflow via the component org.threeten.bp.format.DateTimeFormatter::parse(CharSequence, ParsePosition).
+#### References
+* https://ossindex.sonatype.org/vulnerability/CVE-2024-23082?component-type=maven&component-name=org.threeten%2Fthreetenbp&utm_source=ossindex-client&utm_medium=integration&utm_content=1.8.1
+* http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-23082
+* https://gist.github.com/LLM4IG/d2618f5f4e5ac37eb75cff5617e58b90
+
+## Security
+
+* #52: Fixed vulnerability CVE-2024-23081 in dependency `org.threeten:threetenbp:jar:1.6.8:compile`
+* #53: Fixed vulnerability CVE-2024-23082 in dependency `org.threeten:threetenbp:jar:1.6.8:compile`
+
+## Dependency Updates
+
+### Test Dependency Updates
+
+* Updated `com.exasol:udf-debugging-java:0.6.12` to `0.6.13`
diff --git a/doc/user_guide/user_guide.md b/doc/user_guide/user_guide.md
@@ -17,7 +17,7 @@ Next create the Adapter Script:
  ```sql
 CREATE OR REPLACE JAVA ADAPTER SCRIPT ADAPTER.GOOGLE_CLOUD_STORAGE_FILES_ADAPTER AS
     %scriptclass com.exasol.adapter.RequestDispatcher;
-    %jar /buckets/bfsdefault/default/document-files-virtual-schema-dist-8.0.3-google-cloud-storage-2.0.2.jar;
+    %jar /buckets/bfsdefault/default/document-files-virtual-schema-dist-8.0.3-google-cloud-storage-2.0.3.jar;
 /
 ```
 
@@ -30,7 +30,7 @@ CREATE OR REPLACE JAVA SET SCRIPT ADAPTER.IMPORT_FROM_GOOGLE_CLOUD_STORAGE_DOCUM
   CONNECTION_NAME VARCHAR(500))
   EMITS(...) AS
     %scriptclass com.exasol.adapter.document.UdfEntryPoint;
-    %jar /buckets/bfsdefault/default/document-files-virtual-schema-dist-8.0.3-google-cloud-storage-2.0.2.jar;
+    %jar /buckets/bfsdefault/default/document-files-virtual-schema-dist-8.0.3-google-cloud-storage-2.0.3.jar;
 /
 ```
 

diff --git a/pk_generated_parent.pom b/pk_generated_parent.pom
diff --git a/pom.xml b/pom.xml
@@ -2,7 +2,7 @@
 <project xmlns="http://maven.apache.org/POM/4.0.0" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 http://maven.apache.org/xsd/maven-4.0.0.xsd">
     <modelVersion>4.0.0</modelVersion>
     <artifactId>google-cloud-storage-document-files-virtual-schema</artifactId>
-    <version>2.0.2</version>
+    <version>2.0.3</version>
     <name>Virtual Schema for document data in files on Google Cloud Storage</name>
     <description>Adapter for document data access from files from Google Cloud Storage.</description>
     <url>https://github.com/exasol/google-cloud-storage-document-files-virtual-schema/</url>
@@ -97,7 +97,7 @@
         <dependency>
             <groupId>com.exasol</groupId>
             <artifactId>udf-debugging-java</artifactId>
-            <version>0.6.12</version>
+            <version>0.6.13</version>
             <scope>test</scope>
         </dependency>
         <dependency>
@@ -189,7 +189,7 @@
     <parent>
         <artifactId>google-cloud-storage-document-files-virtual-schema-generated-parent</artifactId>
         <groupId>com.exasol</groupId>
-        <version>2.0.2</version>
+        <version>2.0.3</version>
         <relativePath>pk_generated_parent.pom</relativePath>
     </parent>
 </project>
diff --git a/src/test/java/com/exasol/adapter/document/files/IntegrationTestSetup.java b/src/test/java/com/exasol/adapter/document/files/IntegrationTestSetup.java
@@ -28,7 +28,7 @@
 public class IntegrationTestSetup implements AutoCloseable {
     private static final Logger LOG = Logger.getLogger(IntegrationTestSetup.class.getName());
 
-    private static final String ADAPTER_JAR = "document-files-virtual-schema-dist-8.0.3-google-cloud-storage-2.0.2.jar";
+    private static final String ADAPTER_JAR = "document-files-virtual-schema-dist-8.0.3-google-cloud-storage-2.0.3.jar";
     private final ExasolTestSetup exasolTestSetup;
     private final Connection connection;
     private final Statement statement;