lalalachenhao opened a new issue #12101: URL: https://github.com/apache/druid/issues/12101
Regarding the latest stable Druid release version 0.22.1, it is a bug fix that Update log4j to 2.15.0 to address CVE-2021-44228. However there are lots of major customers asking if there is any further schedule plan for CVE-2021-45046 & CVE-2021-45105 which also address the Apache Log4j2 vulnerabilities. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected] --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
