You are viewing a plain text version of this content. The canonical link for it is here.

Posted to commits@camel.apache.org by da...@apache.org on 2021/12/20 05:41:52 UTC

[camel] branch camel-3.14.x updated: Update log 4js version to 2.17 (#6560)

This is an automated email from the ASF dual-hosted git repository.

davsclaus pushed a commit to branch camel-3.14.x
in repository https://gitbox.apache.org/repos/asf/camel.git


The following commit(s) were added to refs/heads/camel-3.14.x by this push:
     new d1cbd73  Update log 4js version to 2.17 (#6560)
d1cbd73 is described below

commit d1cbd73b5384e8fbd0228e0be501015ba965f7f2
Author: Chandish RK Daiboo <cd...@gmail.com>
AuthorDate: Mon Dec 20 09:39:42 2021 +0400

    Update log 4js version to 2.17 (#6560)
    
    * Update log 4js version to 2.17
    
    This fixes the security issue https://nvd.nist.gov/vuln/detail/CVE-2021-45105
    
    * Update log 4js version to 2.17
    
    This fixes the security issue https://nvd.nist.gov/vuln/detail/CVE-2021-45105
---
 camel-dependencies/pom.xml | 2 +-
 parent/pom.xml             | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/camel-dependencies/pom.xml b/camel-dependencies/pom.xml
index 5decbb9..e3f4964 100644
--- a/camel-dependencies/pom.xml
+++ b/camel-dependencies/pom.xml
@@ -380,7 +380,7 @@
     <libthrift-version>0.14.1</libthrift-version>
     <lifecycle-mapping-version>1.0.0</lifecycle-mapping-version>
     <lightcouch-version>0.2.0</lightcouch-version>
-    <log4j2-version>2.16.0</log4j2-version>
+    <log4j2-version>2.17.0</log4j2-version>
     <logback-version>1.2.8</logback-version>
     <lucene-version>8.11.0</lucene-version>
     <lucene-version-range>[8,9)</lucene-version-range>
diff --git a/parent/pom.xml b/parent/pom.xml
index fe5c1fb..8d05dd6 100644
--- a/parent/pom.xml
+++ b/parent/pom.xml
@@ -363,7 +363,7 @@
         <!-- virtual dependency only used by Eclipse m2e -->
         <lifecycle-mapping-version>1.0.0</lifecycle-mapping-version>
         <lettuce-version>5.1.0.RELEASE</lettuce-version>
-        <log4j2-version>2.16.0</log4j2-version>
+        <log4j2-version>2.17.0</log4j2-version>
         <logback-version>1.2.8</logback-version>
         <lucene-version>8.11.0</lucene-version>
         <lucene-version-range>[8,9)</lucene-version-range>