[
https://issues.apache.org/jira/browse/LOG4J2-1514?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17506784#comment-17506784
]
Aman Jain commented on LOG4J2-1514:
-----------------------------------
log4j-1.2-api-2.17.0.jar, log4j-api-2.17.0.jar, log4j-core-2.17.0.jar still
has the CVE vulnerabilities, so can we use the version greater than 2.17.0 like
2.17.1 or 2.17.2.
> Help Apache Zookeeper project to upgrade from Log4j 1.x to 2.x
> --------------------------------------------------------------
>
> Key: LOG4J2-1514
> URL: https://issues.apache.org/jira/browse/LOG4J2-1514
> Project: Log4j 2
> Issue Type: Sub-task
> Reporter: Mikael Ståldal
> Priority: Major
>
--
This message was sent by Atlassian Jira
(v8.20.1#820001)
