You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@ws.apache.org by "Robert Lazarski (Jira)" <ji...@apache.org> on 2021/12/16 00:42:00 UTC

[jira] [Closed] (AXIOM-510) Log4j2 update for CVE-2021-44228

     [ https://issues.apache.org/jira/browse/AXIOM-510?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Robert Lazarski closed AXIOM-510.
---------------------------------
    Resolution: Fixed

> Log4j2 update for CVE-2021-44228
> --------------------------------
>
>                 Key: AXIOM-510
>                 URL: https://issues.apache.org/jira/browse/AXIOM-510
>             Project: Axiom
>          Issue Type: Improvement
>            Reporter: Robert Lazarski
>            Priority: Major
>             Fix For: 1.3.1
>
>
> I committed the upgrade of log4j2 to 2.15.0.
> [~veithen] , I see that you have done quite a few commits in Axiom since the 1.3.0 release - splendid work BTW. 
> What's your thoughts on releasing Axiom for CVE-2021-44228? Axis2 and Rampart releases would follow.
> I did the last 1.3.0 release and volunteer for the next one - just thought I'd mention that.



--
This message was sent by Atlassian Jira
(v8.20.1#820001)

---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@ws.apache.org
For additional commands, e-mail: dev-help@ws.apache.org