You are viewing a plain text version of this content. The canonical link for it is here.
Posted to commits@storm.apache.org by et...@apache.org on 2022/01/17 18:21:38 UTC
[storm] branch 2.1.x-branch updated (58d6148 -> c8322a3)
This is an automated email from the ASF dual-hosted git repository.
ethanli pushed a change to branch 2.1.x-branch
in repository https://gitbox.apache.org/repos/asf/storm.git.
from 58d6148 [maven-release-plugin] prepare for next development iteration
new 83c795a bump log4j 2.16.0 (#3425)
new da4b293 STORM-3811 Update log4j to 2.17 to address CVE-2021-45105. (#3428)
new 7b20ac5 Bump log4j version to 2.17.1 (#3433)
new c8322a3 MINOR: update LICENSE files (#3436)
The 4 revisions listed above as "new" are entirely new to this
repository and will be described in separate emails. The revisions
listed as "add" were already present in the repository and have only
been added to this reference.
Summary of changes:
DEPENDENCY-LICENSES | 10 +++++-----
LICENSE-binary | 10 +++++-----
pom.xml | 2 +-
3 files changed, 11 insertions(+), 11 deletions(-)
[storm] 02/04: STORM-3811 Update log4j to 2.17 to address CVE-2021-45105. (#3428)
Posted by et...@apache.org.
This is an automated email from the ASF dual-hosted git repository.
ethanli pushed a commit to branch 2.1.x-branch
in repository https://gitbox.apache.org/repos/asf/storm.git
commit da4b2938ffc2d27e65b1e1d6c2b2b265b25130c9
Author: Bernard Joseph Jean Bruno <br...@busymind101.com>
AuthorDate: Mon Dec 20 19:21:45 2021 +0400
STORM-3811 Update log4j to 2.17 to address CVE-2021-45105. (#3428)
---
pom.xml | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/pom.xml b/pom.xml
index 6012572..014867f 100644
--- a/pom.xml
+++ b/pom.xml
@@ -284,7 +284,7 @@
<auto-service.version>1.0-rc4</auto-service.version>
<netty.version>4.1.30.Final</netty.version>
<sysout-over-slf4j.version>1.0.2</sysout-over-slf4j.version>
- <log4j.version>2.16.0</log4j.version>
+ <log4j.version>2.17.0</log4j.version>
<slf4j.version>1.7.26</slf4j.version>
<metrics.version>3.2.6</metrics.version>
<mockito.version>3.0.0</mockito.version>
[storm] 03/04: Bump log4j version to 2.17.1 (#3433)
Posted by et...@apache.org.
This is an automated email from the ASF dual-hosted git repository.
ethanli pushed a commit to branch 2.1.x-branch
in repository https://gitbox.apache.org/repos/asf/storm.git
commit 7b20ac56eb678a5640c8816c68c9e71586ab6041
Author: reiabreu <ru...@gmail.com>
AuthorDate: Sun Jan 16 20:29:21 2022 +0000
Bump log4j version to 2.17.1 (#3433)
---
pom.xml | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/pom.xml b/pom.xml
index 014867f..e4fed30 100644
--- a/pom.xml
+++ b/pom.xml
@@ -284,7 +284,7 @@
<auto-service.version>1.0-rc4</auto-service.version>
<netty.version>4.1.30.Final</netty.version>
<sysout-over-slf4j.version>1.0.2</sysout-over-slf4j.version>
- <log4j.version>2.17.0</log4j.version>
+ <log4j.version>2.17.1</log4j.version>
<slf4j.version>1.7.26</slf4j.version>
<metrics.version>3.2.6</metrics.version>
<mockito.version>3.0.0</mockito.version>
[storm] 04/04: MINOR: update LICENSE files (#3436)
Posted by et...@apache.org.
This is an automated email from the ASF dual-hosted git repository.
ethanli pushed a commit to branch 2.1.x-branch
in repository https://gitbox.apache.org/repos/asf/storm.git
commit c8322a37364fd2a66c2f85507ac9778c45f1c6e0
Author: Meng (Ethan) Li <et...@gmail.com>
AuthorDate: Sun Jan 16 21:55:28 2022 -0800
MINOR: update LICENSE files (#3436)
---
DEPENDENCY-LICENSES | 10 +++++-----
LICENSE-binary | 10 +++++-----
2 files changed, 10 insertions(+), 10 deletions(-)
diff --git a/DEPENDENCY-LICENSES b/DEPENDENCY-LICENSES
index 44d3551..0692910 100644
--- a/DEPENDENCY-LICENSES
+++ b/DEPENDENCY-LICENSES
@@ -110,11 +110,11 @@ List of third-party dependencies grouped by their license type.
* Apache Ivy (org.apache.ivy:ivy:2.4.0 - http://ant.apache.org/ivy/)
* Apache Kafka (org.apache.kafka:kafka-clients:0.11.0.3 - http://kafka.apache.org)
* Apache Log4j (log4j:log4j:1.2.17 - http://logging.apache.org/log4j/1.2/)
- * Apache Log4j 1.x Compatibility API (org.apache.logging.log4j:log4j-1.2-api:2.11.2 - https://logging.apache.org/log4j/2.x/log4j-1.2-api/)
- * Apache Log4j API (org.apache.logging.log4j:log4j-api:2.11.2 - https://logging.apache.org/log4j/2.x/log4j-api/)
- * Apache Log4j Core (org.apache.logging.log4j:log4j-core:2.11.2 - https://logging.apache.org/log4j/2.x/log4j-core/)
- * Apache Log4j SLF4J Binding (org.apache.logging.log4j:log4j-slf4j-impl:2.11.2 - https://logging.apache.org/log4j/2.x/log4j-slf4j-impl/)
- * Apache Log4j Web (org.apache.logging.log4j:log4j-web:2.11.2 - https://logging.apache.org/log4j/2.x/log4j-web/)
+ * Apache Log4j 1.x Compatibility API (org.apache.logging.log4j:log4j-1.2-api:2.17.1 - https://logging.apache.org/log4j/2.x/log4j-1.2-api/)
+ * Apache Log4j API (org.apache.logging.log4j:log4j-api:2.17.1 - https://logging.apache.org/log4j/2.x/log4j-api/)
+ * Apache Log4j Core (org.apache.logging.log4j:log4j-core:2.17.1 - https://logging.apache.org/log4j/2.x/log4j-core/)
+ * Apache Log4j SLF4J Binding (org.apache.logging.log4j:log4j-slf4j-impl:2.17.1 - https://logging.apache.org/log4j/2.x/log4j-slf4j-impl/)
+ * Apache Log4j Web (org.apache.logging.log4j:log4j-web:2.17.1 - https://logging.apache.org/log4j/2.x/log4j-web/)
* Apache Maven Artifact Transfer (org.apache.maven.shared:maven-artifact-transfer:0.9.1 - https://maven.apache.org/shared/maven-artifact-transfer/)
* Apache Maven Common Artifact Filters (org.apache.maven.shared:maven-common-artifact-filters:3.0.1 - https://maven.apache.org/shared/maven-common-artifact-filters/)
* Apache Maven Dependency Tree (org.apache.maven.shared:maven-dependency-tree:2.2 - http://maven.apache.org/shared/maven-dependency-tree/)
diff --git a/LICENSE-binary b/LICENSE-binary
index d6a6ff0..1213840 100644
--- a/LICENSE-binary
+++ b/LICENSE-binary
@@ -744,11 +744,11 @@ The license texts of these dependencies can be found in the licenses directory.
* Apache Ivy (org.apache.ivy:ivy:2.4.0 - http://ant.apache.org/ivy/)
* Apache Kafka (org.apache.kafka:kafka-clients:0.11.0.3 - http://kafka.apache.org)
* Apache Log4j (log4j:log4j:1.2.17 - http://logging.apache.org/log4j/1.2/)
- * Apache Log4j 1.x Compatibility API (org.apache.logging.log4j:log4j-1.2-api:2.11.2 - https://logging.apache.org/log4j/2.x/log4j-1.2-api/)
- * Apache Log4j API (org.apache.logging.log4j:log4j-api:2.11.2 - https://logging.apache.org/log4j/2.x/log4j-api/)
- * Apache Log4j Core (org.apache.logging.log4j:log4j-core:2.11.2 - https://logging.apache.org/log4j/2.x/log4j-core/)
- * Apache Log4j SLF4J Binding (org.apache.logging.log4j:log4j-slf4j-impl:2.11.2 - https://logging.apache.org/log4j/2.x/log4j-slf4j-impl/)
- * Apache Log4j Web (org.apache.logging.log4j:log4j-web:2.11.2 - https://logging.apache.org/log4j/2.x/log4j-web/)
+ * Apache Log4j 1.x Compatibility API (org.apache.logging.log4j:log4j-1.2-api:2.17.1 - https://logging.apache.org/log4j/2.x/log4j-1.2-api/)
+ * Apache Log4j API (org.apache.logging.log4j:log4j-api:2.17.1 - https://logging.apache.org/log4j/2.x/log4j-api/)
+ * Apache Log4j Core (org.apache.logging.log4j:log4j-core:2.17.1 - https://logging.apache.org/log4j/2.x/log4j-core/)
+ * Apache Log4j SLF4J Binding (org.apache.logging.log4j:log4j-slf4j-impl:2.17.1 - https://logging.apache.org/log4j/2.x/log4j-slf4j-impl/)
+ * Apache Log4j Web (org.apache.logging.log4j:log4j-web:2.17.1 - https://logging.apache.org/log4j/2.x/log4j-web/)
* Apache Parquet Hadoop Bundle (org.apache.parquet:parquet-hadoop-bundle:1.8.1 - https://parquet.apache.org)
* Apache Thrift (org.apache.thrift:libfb303:0.9.3 - http://thrift.apache.org)
* Apache Thrift (org.apache.thrift:libthrift:0.13.0 - http://thrift.apache.org)
[storm] 01/04: bump log4j 2.16.0 (#3425)
Posted by et...@apache.org.
This is an automated email from the ASF dual-hosted git repository.
ethanli pushed a commit to branch 2.1.x-branch
in repository https://gitbox.apache.org/repos/asf/storm.git
commit 83c795a7cba94215ed03134efb2b1505c56275fb
Author: Luke Sun <lu...@gmail.com>
AuthorDate: Thu Dec 16 08:16:26 2021 -0800
bump log4j 2.16.0 (#3425)
STORM-3811 bump log4j 2.16.0
---
pom.xml | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/pom.xml b/pom.xml
index 111079e..6012572 100644
--- a/pom.xml
+++ b/pom.xml
@@ -284,7 +284,7 @@
<auto-service.version>1.0-rc4</auto-service.version>
<netty.version>4.1.30.Final</netty.version>
<sysout-over-slf4j.version>1.0.2</sysout-over-slf4j.version>
- <log4j.version>2.11.2</log4j.version>
+ <log4j.version>2.16.0</log4j.version>
<slf4j.version>1.7.26</slf4j.version>
<metrics.version>3.2.6</metrics.version>
<mockito.version>3.0.0</mockito.version>