You are viewing a plain text version of this content. The canonical link for it is here.

Posted to commits@tika.apache.org by ta...@apache.org on 2021/12/10 16:39:43 UTC

[tika] branch main updated: TIKA-3616 -- upgrade log4j2 to avoid rce vulnerability

This is an automated email from the ASF dual-hosted git repository.

tallison pushed a commit to branch main
in repository https://gitbox.apache.org/repos/asf/tika.git


The following commit(s) were added to refs/heads/main by this push:
     new 9787d5e  TIKA-3616 -- upgrade log4j2 to avoid rce vulnerability
9787d5e is described below

commit 9787d5e2316d0a639241bbdb8654ef4c3cc32e3a
Author: tballison <ta...@apache.org>
AuthorDate: Fri Dec 10 11:38:37 2021 -0500

    TIKA-3616 -- upgrade log4j2 to avoid rce vulnerability
---
 tika-parent/pom.xml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/tika-parent/pom.xml b/tika-parent/pom.xml
index 36a3902..6700748 100644
--- a/tika-parent/pom.xml
+++ b/tika-parent/pom.xml
@@ -331,7 +331,7 @@
     <juniversalchardet.version>1.0.3</juniversalchardet.version>
     <junrar.version>7.4.0</junrar.version>
     <libpst.version>0.9.3</libpst.version>
-    <log4j2.version>2.14.1</log4j2.version>
+    <log4j2.version>2.15.0</log4j2.version>
     <lombok.version>1.18.20</lombok.version>
     <lucene.version>8.11.0</lucene.version>
     <metadata.extractor.version>2.16.0</metadata.extractor.version>