** Bug
* [HHH-14972] - log4j2 <= 2.14.1 has an RCE (CVE-2021-44228)
* [HHH-14948] - Metamodel imports cache increases indefinitely for dynamically generated HQL aliases eventually leading to an OOM
* [HHH-14935] - Type annotation is deprecated without an available replacement
** Bug
* [HHH-14956] - Invalid link to MetadataBuilderContributor javadocs in Configurations docs
* [HHH-14937] - SybaseDialect does not support schema anymore
* [HHH-14936] - JdbcConnectionContext in hibernate-testing throws NPE when user/password are not provided in configuration
* [HHH-14935] - Type annotation is deprecated without an available replacement
* [HHH-14927] - "Current" documentation is 5.5 instead of 5.6
* [HHH-14926] - fix asciidoc error in 'test-case-guide.adoc'
* [HHH-14922] - Inconsistent precedence of orm.xml implicit catalog/schema over "default_catalog"/"default_schema"
* [HHH-14918] - Key-to-one to id-class entity with key-to-one doesn't work anymore
* [HHH-14916] - JPA Critera query Join on Fetch not working
* [HHH-14540] - Interceptor instance is shared between ORM session and Enver's temporary session resulting in multiple calls.
* [HHH-14211] - @Lob String mapping broken
** Improvement
* [HHH-14921] - Definition of the default catalog/schema on session factory creation
* [HHH-14903] - Method getConfiguredJdbcBatchSize can be optimised for StatelessSession as well
* [HHH-14897] - Allow ordering with nulls first/last from JPA implementation
** Task
* [HHH-14938] - Upgrade to MySQL Connector/J 8.0.27
** Bug
* [HHH-14899] - Dialect no longer controlling the default jdbc batch size to use
* [HHH-14891] - JTS package not updated in "spatial basic types table" in user guide
* [HHH-14881] - Converters defined through orm.xml are never retrieved from the CDI context
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
dependabot[bot]
commented
2 years ago
Bumps hibernate-core from 5.5.3.Final to 5.6.3.Final.
Changelog
Sourced from hibernate-core's changelog.
... (truncated)
Commits
2607c915.6.3.Final8d1027fHHH-14935 Revert deprecation of org.hibernate.annotations.Type, TypeDef and T...ab80895HHH-14979 Upgrade to Log4J 2 2.16.0ad8723cHHH-14972 bump log4j to 2.15.0 fixing an RCE (CVE-2021-44228)fc957ecHHH-14948 - Reduce the size of the imports cache in the metamodelf6f76545.6.3-SNAPSHOTdc005525.6.2.Final67e09b1HHH-14922 Give precedence to default catalog/schema over implicit catalog/schema795d5cdHHH-14922 Delay applying the implicit catalog/schema until schema management ...9b47fcdHHH-14922 Test behavior when setting both implicit catalog/schema and default...Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)