Bump com.microsoft.sqlserver:mssql-jdbc from 11.2.3.jre17 to 12.3.0.jre17-preview

[dependabot]

Bumps com.microsoft.sqlserver:mssql-jdbc from 11.2.3.jre17 to 12.3.0.jre17-preview.

Release notes

Sourced from com.microsoft.sqlserver:mssql-jdbc's releases.

[12.3.0] Preview Release

Added

• Added additional logging info to help debug authentication and encryption issues 2118
• Added SQL query to toString() in SQLServerPreparedStatement to support Hibernate JPA slow query logging 2099
• Added Java 20 support 2097
• Added access token callback class connection string property 2073

Changed

• Updated azure-identity version 2114
• Updated msal4j version 2102
• Allow failover partner to be tried in case of socket timeout 2100
• Updated supportsLikeEscapeClause() to check for Azure data warehouse 2092
• sp_cursor calls now have table names passed in instead of an empty string 2087
• Updated federated authentication logic to use persistence token cache when fetching token 2079
• Updated supportTransaction method to reflect whether server supports transactions 2075
• Made jdk.net optional OSGi import 2069
• Upgraded to latest OSGi JDBC specification 2017

Fixed issues

• Fixed missing property value for disableStatementPooling meta info query 2120
• Fixed typo in access token error message 2119
• Fixed BigDecimal error when values between 0 and 1 are specified 2116
• Fixed lockTimeout not taking effect when redirect mode is set in Azure DB 2110
• Fixed shared timer race condition 2085
• Fixed XA error handling to rethrow XAER_RMFAIL instead of XAER_RMERR 2078
• Fixed issue by accounting for zero meta query results 2074
• Fixed invalid batch inserts when columns provided in insert differs in order from table schema 1992

[12.2.1] Hotfix & Stable Release

Fixed issues

• Address a hostname validation vulnerability by securely parsing certificate common names. #2798 What was fixed: Secure hostname validation is enforced by replacing the vulnerable CN parsing logic in SQLServerCertificateUtils.java, preventing spoofing attacks. Who benefits: All users of the SQL Server JDBC driver, especially those relying on TLS for secure connections, benefit from improved certificate validation.

[12.2.0] Stable Release

Added

• Added new connection property datetimeParameterType to specify datatype to use for date/timestamp parameters 1590

Changed

• Renamed driver DefaultAzureCredential authentication to ActiveDirectoryDefault 2055
• Update to dynamically check for ExtendedSocketOption class 2043
• Upgraded dependency versions 2040 1966
• Misc code cleanup and test fixes 2059 2053 2049 2048 2044 2041 2031 2029 2016 2014 1991 1977 1974 1970 1969 1962

Fixed issues

• Fixed BigDecimal Precision/Scale issue 2051
• Fixed NULL state and 0 error code for SQL exceptions 2018
• Fixed incorrect updateCount 2013
• Fixed Azure Active Directory user name cache matching to be case insensitive 1923
• Fixed concurrency issues in encrypt/decrypt obfuscation methods for truststore password 1968
• Fixed Idle Connection recovery so that unprocessedResponseCount isn't over decremented 1989
• Fixed race condition connecting to the wrong SQLServer host in configurable IPv6 1968

... (truncated)

Commits

• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  You can disable automated security fix PRs for this repo from the Security Alerts page.