Alexey Serbin has uploaded this change for review. ( http://gerrit.cloudera.org:8080/18084
Change subject: [java] bump log4j up to 2.15.0 version ...................................................................... [java] bump log4j up to 2.15.0 version Kudu doesn't use Java for the server-side components, but to keep various security scanners happy regarding the recent security vulnerabilities like [1], let's update the log4j package up to the recently released 2.15.0 version (2021-12-06). Release notes for the new version of the package is available at [2]. [1] https://logging.apache.org/log4j/2.x/security.html [2] https://logging.apache.org/log4j/2.x/changes-report.html#a2.15.0 Change-Id: Ib7317447f24916795d8f00e3f6c418707c7fd4ff --- M java/gradle/dependencies.gradle 1 file changed, 1 insertion(+), 1 deletion(-) git pull ssh://gerrit.cloudera.org:29418/kudu refs/changes/84/18084/1 -- To view, visit http://gerrit.cloudera.org:8080/18084 To unsubscribe, visit http://gerrit.cloudera.org:8080/settings Gerrit-Project: kudu Gerrit-Branch: master Gerrit-MessageType: newchange Gerrit-Change-Id: Ib7317447f24916795d8f00e3f6c418707c7fd4ff Gerrit-Change-Number: 18084 Gerrit-PatchSet: 1 Gerrit-Owner: Alexey Serbin <[email protected]>
