[jira] [Commented] (NIFI-9531) Nifi 1.15.2 still having older log4j

Joe Witt (Jira) Tue, 04 Jan 2022 09:01:14 -0800


    [ 
https://issues.apache.org/jira/browse/NIFI-9531?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17468739#comment-17468739
 ]


Joe Witt commented on NIFI-9531:
--------------------------------

[~snarukurti] Please provide the specific jar file(s)/location(s) you are 
referring to.


> Nifi 1.15.2 still having older log4j
> ------------------------------------
>
>                 Key: NIFI-9531
>                 URL: https://issues.apache.org/jira/browse/NIFI-9531
>             Project: Apache NiFi
>          Issue Type: Bug
>          Components: NiFi Stateless
>    Affects Versions: 1.15.1
>            Reporter: Subbu 
>            Priority: Major
>             Fix For: 1.15.2
>
>
> Nifi 1.15.0 and 1.15.2 both contains same log4j version (version 1.7.32) 
> which is reported by security team as a vulnerability. 
> IT security team looking for  latest log4j version 2.17.



--
This message was sent by Atlassian Jira
(v8.20.1#820001)

[jira] [Commented] (NIFI-9531) Nifi 1.15.2 still having older log4j

Reply via email to