This is an automated email from the ASF dual-hosted git repository.
mayanks pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/pinot.git
The following commit(s) were added to refs/heads/master by this push:
new af2858a update log4j 2 to avoid CVE-2021-44228 (#7889)
af2858a is described below
commit af2858aff26e169f348605e61d0c5e21ddd73dd9
Author: Richard Startin <[email protected]>
AuthorDate: Fri Dec 10 14:53:48 2021 +0000
update log4j 2 to avoid CVE-2021-44228 (#7889)
---
LICENSE-binary | 8 ++++----
pom.xml | 2 +-
2 files changed, 5 insertions(+), 5 deletions(-)
diff --git a/LICENSE-binary b/LICENSE-binary
index 7c01e80..3c65fb1 100644
--- a/LICENSE-binary
+++ b/LICENSE-binary
@@ -345,10 +345,10 @@ org.apache.httpcomponents:httpmime:4.5.3
org.apache.kafka:kafka-clients:2.0.0
org.apache.kafka:kafka_2.10:0.9.0.1
org.apache.kafka:kafka_2.11:2.0.0
-org.apache.logging.log4j:log4j-1.2-api:2.11.2
-org.apache.logging.log4j:log4j-api:2.11.2
-org.apache.logging.log4j:log4j-core:2.11.2
-org.apache.logging.log4j:log4j-slf4j-impl:2.11.2
+org.apache.logging.log4j:log4j-1.2-api:2.15.0
+org.apache.logging.log4j:log4j-api:2.15.0
+org.apache.logging.log4j:log4j-core:2.15.0
+org.apache.logging.log4j:log4j-slf4j-impl:2.15.0
org.apache.lucene:lucene-analyzers-common:8.2.0
org.apache.lucene:lucene-core:8.2.0
org.apache.lucene:lucene-queries:8.2.0
diff --git a/pom.xml b/pom.xml
index 927f35b..11bf687 100644
--- a/pom.xml
+++ b/pom.xml
@@ -147,7 +147,7 @@
<snappy-java.version>1.1.1.7</snappy-java.version>
<zstd-jni.version>1.4.9-5</zstd-jni.version>
<lz4-java.version>1.7.1</lz4-java.version>
- <log4j.version>2.11.2</log4j.version>
+ <log4j.version>2.15.0</log4j.version>
<netty.version>4.1.54.Final</netty.version>
<netty-tcnative.version>2.0.36.Final</netty-tcnative.version>
<reactivestreams.version>1.0.3</reactivestreams.version>
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
