You are viewing a plain text version of this content. The canonical link for it is here.
Posted to commits@struts.apache.org by lu...@apache.org on 2021/12/23 07:23:38 UTC
[struts-site] branch master updated: Uses proper CVE and url related to Log4j 2.12.3
This is an automated email from the ASF dual-hosted git repository.
lukaszlenart pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/struts-site.git
The following commit(s) were added to refs/heads/master by this push:
new 68007ef Uses proper CVE and url related to Log4j 2.12.3
68007ef is described below
commit 68007efae006b2bc960c49b78b6de244c8ffe962
Author: Lukasz Lenart <lu...@apache.org>
AuthorDate: Thu Dec 23 08:23:34 2021 +0100
Uses proper CVE and url related to Log4j 2.12.3
---
source/announce-2021.md | 4 ++--
1 file changed, 2 insertions(+), 2 deletions(-)
diff --git a/source/announce-2021.md b/source/announce-2021.md
index 78f6c63..993c5e8 100644
--- a/source/announce-2021.md
+++ b/source/announce-2021.md
@@ -18,8 +18,8 @@ title: Announcements 2021
The Apache Struts group is pleased to announce that Struts 2.5.28.2 is available as a "General Availability"
release. The GA designation is our highest quality grade.
-This release addresses Log4j vulnerability [CVE-2021-45046](https://logging.apache.org/log4j/2.x/security.html#CVE-2021-45046)
-by using the latest Log4j 2.12.2 version (Java 1.7 compatible).
+This release addresses Log4j vulnerability [CVE-2021-45105](https://logging.apache.org/log4j/2.x/security.html#CVE-2021-45105)
+by using the latest Log4j 2.12.3 version (Java 1.7 compatible).
> Please read the [Version Notes]({{ site.wiki_url }}/Version+Notes+2.5.28.2) to find more details about performed
> bug fixes and improvements.