Alexey Serbin has posted comments on this change. ( http://gerrit.cloudera.org:8080/23370 )
Change subject: [java] Upgrade slf4j dependency to 2.0.13 ...................................................................... Patch Set 2: > Patch Set 2: Patch Set 1 was rebased What's the driver behind updating the version of the package? IIRC, when I looked at this in a previous PR, it seemed to me that CVE-2018-8088 is already addressed with the version that we have in the repo. If that's something beyond CVE-2018-8088, it would be great to mention that in the description. Thanks! -- To view, visit http://gerrit.cloudera.org:8080/23370 To unsubscribe, visit http://gerrit.cloudera.org:8080/settings Gerrit-Project: kudu Gerrit-Branch: master Gerrit-MessageType: comment Gerrit-Change-Id: I58a4fc3615c7dbb8d10393bbc536d77dfaf68e47 Gerrit-Change-Number: 23370 Gerrit-PatchSet: 2 Gerrit-Owner: Zoltan Chovan <[email protected]> Gerrit-Reviewer: Alexey Serbin <[email protected]> Gerrit-Reviewer: Kudu Jenkins (120) Gerrit-Comment-Date: Wed, 04 Mar 2026 04:36:56 +0000 Gerrit-HasComments: No
