[jira] [Closed] (JAMES-3683) Upgrade Log4j to 2.15.0 - CVE-2021-44228

Benoit Tellier (Jira) Sun, 12 Dec 2021 17:24:06 -0800


     [ 
https://issues.apache.org/jira/browse/JAMES-3683?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]


Benoit Tellier closed JAMES-3683.
---------------------------------
    Fix Version/s: 3.7.0
                   3.6.1
       Resolution: Fixed

Merged

> Upgrade Log4j to 2.15.0 - CVE-2021-44228
> ----------------------------------------
>
>                 Key: JAMES-3683
>                 URL: https://issues.apache.org/jira/browse/JAMES-3683
>             Project: James Server
>          Issue Type: Bug
>    Affects Versions: 3.6.1
>            Reporter: Arnaud Lefebvre
>            Priority: Major
>              Labels: security
>             Fix For: 3.7.0, 3.6.1
>
>          Time Spent: 50m
>  Remaining Estimate: 0h
>
> Log4j has an RCE vulnerability, see 
> https://www.lunasec.io/docs/blog/log4j-zero-day/



--
This message was sent by Atlassian Jira
(v8.20.1#820001)

---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]

[jira] [Closed] (JAMES-3683) Upgrade Log4j to 2.15.0 - CVE-2021-44228

Reply via email to