You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@jspwiki.apache.org by "Juan Pablo Santos Rodríguez (Jira)" <ji...@apache.org> on 2021/12/15 21:55:00 UTC

[jira] [Commented] (JSPWIKI-1166) Bump log4j to 2.16.0

    [ https://issues.apache.org/jira/browse/JSPWIKI-1166?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17460267#comment-17460267 ] 

Juan Pablo Santos Rodríguez commented on JSPWIKI-1166:
------------------------------------------------------

was done in https://github.com/apache/jspwiki/pull/155 and https://github.com/apache/jspwiki/pull/157; assigning fix version, so it appears on the version's release notes.

> Bump log4j to 2.16.0
> --------------------
>
>                 Key: JSPWIKI-1166
>                 URL: https://issues.apache.org/jira/browse/JSPWIKI-1166
>             Project: JSPWiki
>          Issue Type: Bug
>            Reporter: Arturo Bernal
>            Priority: Critical
>              Labels: pull-request-available
>             Fix For: 2.11.1
>
>
> Bumping log4j due to [CVE-2021-44228|https://github.com/advisories/GHSA-jfh8-c2jp-5v3q]
>  
>  
>  
>  



--
This message was sent by Atlassian Jira
(v8.20.1#820001)