You are viewing a plain text version of this content. The canonical link for it is here.

Posted to commits@tomee.apache.org by "Richard Zowalla (JIRA)" <ji...@apache.org> on 2018/12/13 09:15:00 UTC

[jira] [Created] (TOMEE-2362) Upgrade SL4J to mitigate CVE-2018-8088

Richard Zowalla created TOMEE-2362:
--------------------------------------

             Summary: Upgrade SL4J to mitigate CVE-2018-8088
                 Key: TOMEE-2362
                 URL: https://issues.apache.org/jira/browse/TOMEE-2362
             Project: TomEE
          Issue Type: Dependency upgrade
            Reporter: Richard Zowalla


I will open this issue as an reminder as *no release version* (besides BETA releases) is available for now.

We need to upgrade SL4J to mitigate CVE-2018-8088 (see [https://nvd.nist.gov/vuln/detail/CVE-2018-8088)] in the near future.

 



--
This message was sent by Atlassian JIRA
(v7.6.3#76005)