You are viewing a plain text version of this content. The canonical link for it is here.
Posted to commits@hbase.apache.org by zh...@apache.org on 2021/12/11 13:07:11 UTC
[hbase-operator-tools] branch master updated (5321d0a -> b4c69ec)
This is an automated email from the ASF dual-hosted git repository.
zhangduo pushed a change to branch master
in repository https://gitbox.apache.org/repos/asf/hbase-operator-tools.git.
from 5321d0a HBASE-26557 log4j2 has a critical RCE vulnerability (#95)
new 0ca1fa6 Revert "HBASE-26557 log4j2 has a critical RCE vulnerability (#95)"
new b4c69ec HBASE-26561 [hbase-operator-tools] Upgrade log4j2 to 2.15.0 to address CVE-2021-44228 (#95)
The 2 revisions listed above as "new" are entirely new to this
repository and will be described in separate emails. The revisions
listed as "add" were already present in the repository and have only
been added to this reference.
Summary of changes:
[hbase-operator-tools] 02/02: HBASE-26561 [hbase-operator-tools] Upgrade log4j2 to 2.15.0 to address CVE-2021-44228 (#95)
Posted by zh...@apache.org.
This is an automated email from the ASF dual-hosted git repository.
zhangduo pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/hbase-operator-tools.git
commit b4c69ecb486f68206affd1b245bc30e7b93b1beb
Author: Yutong Xiao <yu...@gmail.com>
AuthorDate: Sat Dec 11 20:54:06 2021 +0800
HBASE-26561 [hbase-operator-tools] Upgrade log4j2 to 2.15.0 to address CVE-2021-44228 (#95)
Signed-off-by: Pankaj Kumar <pa...@apache.org>
Signed-off-by: Duo Zhang <zh...@apache.org>
---
hbase-hbck2/pom.xml | 2 +-
hbase-tools/pom.xml | 2 +-
2 files changed, 2 insertions(+), 2 deletions(-)
diff --git a/hbase-hbck2/pom.xml b/hbase-hbck2/pom.xml
index 82b0cd0..e3fae81 100644
--- a/hbase-hbck2/pom.xml
+++ b/hbase-hbck2/pom.xml
@@ -32,7 +32,7 @@
<description>HBCK for HBase 2+</description>
<properties>
<hbase-thirdparty.version>2.2.1</hbase-thirdparty.version>
- <log4j2.version>2.11.1</log4j2.version>
+ <log4j2.version>2.15.0</log4j2.version>
</properties>
<build>
diff --git a/hbase-tools/pom.xml b/hbase-tools/pom.xml
index 0b41e02..8f03864 100644
--- a/hbase-tools/pom.xml
+++ b/hbase-tools/pom.xml
@@ -35,7 +35,7 @@
<description>Utility Maintenance tools for HBase 2+</description>
<properties>
<hbase-thirdparty.version>2.2.1</hbase-thirdparty.version>
- <log4j2.version>2.11.1</log4j2.version>
+ <log4j2.version>2.15.0</log4j2.version>
</properties>
<dependencies>
[hbase-operator-tools] 01/02: Revert "HBASE-26557 log4j2 has a critical RCE vulnerability (#95)"
Posted by zh...@apache.org.
This is an automated email from the ASF dual-hosted git repository.
zhangduo pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/hbase-operator-tools.git
commit 0ca1fa61abc56671ce34c66b63e3936234b9670a
Author: Duo Zhang <zh...@apache.org>
AuthorDate: Sat Dec 11 21:05:02 2021 +0800
Revert "HBASE-26557 log4j2 has a critical RCE vulnerability (#95)"
This reverts commit 5321d0a5df4aaa3abadd7c3de0d741c7bb5d37e2.
---
hbase-hbck2/pom.xml | 2 +-
hbase-tools/pom.xml | 2 +-
2 files changed, 2 insertions(+), 2 deletions(-)
diff --git a/hbase-hbck2/pom.xml b/hbase-hbck2/pom.xml
index e3fae81..82b0cd0 100644
--- a/hbase-hbck2/pom.xml
+++ b/hbase-hbck2/pom.xml
@@ -32,7 +32,7 @@
<description>HBCK for HBase 2+</description>
<properties>
<hbase-thirdparty.version>2.2.1</hbase-thirdparty.version>
- <log4j2.version>2.15.0</log4j2.version>
+ <log4j2.version>2.11.1</log4j2.version>
</properties>
<build>
diff --git a/hbase-tools/pom.xml b/hbase-tools/pom.xml
index 8f03864..0b41e02 100644
--- a/hbase-tools/pom.xml
+++ b/hbase-tools/pom.xml
@@ -35,7 +35,7 @@
<description>Utility Maintenance tools for HBase 2+</description>
<properties>
<hbase-thirdparty.version>2.2.1</hbase-thirdparty.version>
- <log4j2.version>2.15.0</log4j2.version>
+ <log4j2.version>2.11.1</log4j2.version>
</properties>
<dependencies>