[jira] [Reopened] (DAFFODIL-2610) Update log4J dependency to fix CVE-2021-44228

Mike Beckerle (Jira) Mon, 20 Dec 2021 09:30:04 -0800


     [ 
https://issues.apache.org/jira/browse/DAFFODIL-2610?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]


Mike Beckerle reopened DAFFODIL-2610:
-------------------------------------
      Assignee: Mike Beckerle  (was: Steve Lawrence)

A second Log4J 
[CVE-2021-45105|https://github.com/advisories/GHSA-p6xc-xr62-6r2g] was 
identified.

Reopening so we can fix both on this ticket. 

> Update log4J dependency to fix CVE-2021-44228
> ---------------------------------------------
>
>                 Key: DAFFODIL-2610
>                 URL: https://issues.apache.org/jira/browse/DAFFODIL-2610
>             Project: Daffodil
>          Issue Type: Bug
>          Components: General
>    Affects Versions: 3.2.0
>            Reporter: Mike Beckerle
>            Assignee: Mike Beckerle
>            Priority: Critical
>             Fix For: 3.2.1
>
>
> Update to 2.16.0



--
This message was sent by Atlassian Jira
(v8.20.1#820001)

[jira] [Reopened] (DAFFODIL-2610) Update log4J dependency to fix CVE-2021-44228

Reply via email to