Note that this email list does not allow attachments. Gary
On Tue, Mar 29, 2022, 16:47 Juan Jose Silupu Maza < [email protected]> wrote: > > > > > Enviado desde Correo <https://go.microsoft.com/fwlink/?LinkId=550986> > para Windows > > > > *De: *Juan Jose Silupu Maza <[email protected]> > *Enviado: *martes, 29 de marzo de 2022 11:59 > *Para: *[email protected] > *Asunto: *Sprint-boot 1.5.x with maven is affected por log4j > vulnerability? > > > > I have a maven project with spring-boot. > > > > Run the command mvnw dependency:list | grep log4j and I get this output: > > > > Also, I did a search on all modules for the string: logg and got this > result: > > > > Also, my project has these dependencies: > > [image: slf4j dependecies] > > > > So, is my project affected by the LOG4J vulnerability? How do I mitigate > it? > > > > Enviado desde Correo <https://go.microsoft.com/fwlink/?LinkId=550986> > para Windows > > > > > > ------------------------------ > > > *This email and any attachments are sent in strictest confidence for the > sole use of the addressee and may contain legally privileged, confidential, > and proprietary data. If you are not the intended recipient, please advise > the sender by replying promptly to this email and then delete and destroy > this email and any attachments without any further use, copying or > forwarding. * >
