You are viewing a plain text version of this content. The canonical link for it is here.

Posted to pluto-dev@portals.apache.org by "Neil Griffin (Jira)" <ji...@apache.org> on 2022/01/06 01:21:00 UTC

[jira] [Created] (PLUTO-796) Upgrade to Log4j 2.17.1 due to CVE-2021-45105

Neil Griffin created PLUTO-796:
----------------------------------

             Summary: Upgrade to Log4j 2.17.1 due to CVE-2021-45105
                 Key: PLUTO-796
                 URL: https://issues.apache.org/jira/browse/PLUTO-796
             Project: Pluto
          Issue Type: Task
          Components: demo portlets, maven archetypes
            Reporter: Neil Griffin
            Assignee: Neil Griffin
             Fix For: 3.1.2


This task involves upgrading due to CVE-2021-45105. Although the vulnerability is fixed in 2.17.0, version 2.17.1 is the latest version at the time of this writing.



--
This message was sent by Atlassian Jira
(v8.20.1#820001)