[XRAYMAVEN-10] Upgrade log4j dependency - Xblend Issue Tracker

Xporter

XML

Word

Printable

Details

Type: Bug
Status: Resolved
Priority: Major
Resolution: Done
Affects Version/s: Maven R1.1.0
Fix Version/s: Maven R1.1.1, Maven R1.1.2
Labels:
None

Requirement Status:

UNCOVERED

Description

Upgrade log4j in Client-core.

The current version is old and suffers from the following vulnerability:

https://nvd.nist.gov/vuln/detail/CVE-2019-17571

Should be updated to log4j 2.16 also to fix the following vulnerabilities:

Attachments

Activity

People

Assignee:: Hugo Braz [X] (Inactive)

Reporter:: David Duarte

Votes:: 0 Vote for this issue

Watchers:: 0 Start watching this issue

Dates

Created:: 17/Dec/21 9:51 AM

Updated:: 20/Dec/21 5:20 PM

Resolved:: 20/Dec/21 5:20 PM

Time Tracking

Estimated:

Not Specified

Remaining:

0m

Logged:

1h 50m