You are viewing a plain text version of this content. The canonical link for it is here.
Posted to jdo-commits@db.apache.org by mb...@apache.org on 2021/12/12 20:13:50 UTC
[db-jdo] branch 3.2 updated: JDO-800: update Log4j version to 2.15.0 because of CVE-2021-44228
This is an automated email from the ASF dual-hosted git repository.
mbo pushed a commit to branch 3.2
in repository https://gitbox.apache.org/repos/asf/db-jdo.git
The following commit(s) were added to refs/heads/3.2 by this push:
new e603466 JDO-800: update Log4j version to 2.15.0 because of CVE-2021-44228
e603466 is described below
commit e60346614f2de911b1ec55e902f02a0a0b29708d
Author: Michael Bouschen <mb...@apache.org>
AuthorDate: Sun Dec 12 21:13:41 2021 +0100
JDO-800: update Log4j version to 2.15.0 because of CVE-2021-44228
---
tck/pom.xml | 6 +++---
1 file changed, 3 insertions(+), 3 deletions(-)
diff --git a/tck/pom.xml b/tck/pom.xml
index 7801cf1..28685c3 100644
--- a/tck/pom.xml
+++ b/tck/pom.xml
@@ -218,17 +218,17 @@
<dependency>
<groupId>org.apache.logging.log4j</groupId>
<artifactId>log4j-api</artifactId>
- <version>2.13.3</version>
+ <version>2.15.0</version>
</dependency>
<dependency>
<groupId>org.apache.logging.log4j</groupId>
<artifactId>log4j-core</artifactId>
- <version>2.13.3</version>
+ <version>2.15.0</version>
</dependency>
<dependency>
<groupId>org.apache.logging.log4j</groupId>
<artifactId>log4j-jcl</artifactId>
- <version>2.13.3</version>
+ <version>2.15.0</version>
</dependency>
<dependency>
<!-- License: CDDL + GPLv2 with classpath exception https://github.com/javaee/javax.annotation/blob/master/LICENSE -->