You are viewing a plain text version of this content. The canonical link for it is here.
Posted to commits@hc.apache.org by ol...@apache.org on 2022/07/01 08:54:22 UTC
[httpcomponents-client] branch master updated: Bumping versions of slf4j and log4j.
This is an automated email from the ASF dual-hosted git repository.
olegk pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/httpcomponents-client.git
The following commit(s) were added to refs/heads/master by this push:
new fefbf0b75 Bumping versions of slf4j and log4j.
fefbf0b75 is described below
commit fefbf0b75659e38db7657591a21867f3c44cd831
Author: Tero Saarni <te...@est.tech>
AuthorDate: Wed Jun 29 13:55:46 2022 +0300
Bumping versions of slf4j and log4j.
Removes CVE-2021-44832.
---
pom.xml | 6 +++---
1 file changed, 3 insertions(+), 3 deletions(-)
diff --git a/pom.xml b/pom.xml
index eaec94b5a..b4b317044 100644
--- a/pom.xml
+++ b/pom.xml
@@ -63,12 +63,12 @@
<maven.compiler.source>1.8</maven.compiler.source>
<maven.compiler.target>1.8</maven.compiler.target>
<httpcore.version>5.2-beta2</httpcore.version>
- <log4j.version>2.17.0</log4j.version>
+ <log4j.version>2.17.2</log4j.version>
<brotli.version>0.1.2</brotli.version>
<conscrypt.version>2.5.2</conscrypt.version>
<ehcache.version>3.9.6</ehcache.version>
<memcached.version>2.12.3</memcached.version>
- <slf4j.version>1.7.25</slf4j.version>
+ <slf4j.version>1.7.36</slf4j.version>
<junit.version>5.8.1</junit.version>
<hamcrest.version>2.2</hamcrest.version>
<mockito.version>4.0.0</mockito.version>
@@ -448,4 +448,4 @@
</plugins>
</reporting>
-</project>
\ No newline at end of file
+</project>