You are viewing a plain text version of this content. The canonical link for it is here.
Posted to jdo-commits@db.apache.org by mb...@apache.org on 2021/12/15 20:22:48 UTC
[db-jdo] branch 3.2 updated: JDO-800: update Log4j version to 2.16.0 because of CVE-2021-45046
This is an automated email from the ASF dual-hosted git repository.
mbo pushed a commit to branch 3.2
in repository https://gitbox.apache.org/repos/asf/db-jdo.git
The following commit(s) were added to refs/heads/3.2 by this push:
new 100817f JDO-800: update Log4j version to 2.16.0 because of CVE-2021-45046
100817f is described below
commit 100817f88945b70d4b8671503fd0546e078649b8
Author: Michael Bouschen <mb...@apache.org>
AuthorDate: Wed Dec 15 21:22:40 2021 +0100
JDO-800: update Log4j version to 2.16.0 because of CVE-2021-45046
---
tck/pom.xml | 6 +++---
1 file changed, 3 insertions(+), 3 deletions(-)
diff --git a/tck/pom.xml b/tck/pom.xml
index 28685c3..c6ded4e 100644
--- a/tck/pom.xml
+++ b/tck/pom.xml
@@ -218,17 +218,17 @@
<dependency>
<groupId>org.apache.logging.log4j</groupId>
<artifactId>log4j-api</artifactId>
- <version>2.15.0</version>
+ <version>2.16.0</version>
</dependency>
<dependency>
<groupId>org.apache.logging.log4j</groupId>
<artifactId>log4j-core</artifactId>
- <version>2.15.0</version>
+ <version>2.16.0</version>
</dependency>
<dependency>
<groupId>org.apache.logging.log4j</groupId>
<artifactId>log4j-jcl</artifactId>
- <version>2.15.0</version>
+ <version>2.16.0</version>
</dependency>
<dependency>
<!-- License: CDDL + GPLv2 with classpath exception https://github.com/javaee/javax.annotation/blob/master/LICENSE -->