You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@mahout.apache.org by "Trevor Grant (Jira)" <ji...@apache.org> on 2021/12/14 00:18:00 UTC

[jira] [Created] (MAHOUT-2140) Upgrade Log4j per CVE-2021-44228

Trevor Grant created MAHOUT-2140:
------------------------------------

             Summary: Upgrade Log4j per CVE-2021-44228
                 Key: MAHOUT-2140
                 URL: https://issues.apache.org/jira/browse/MAHOUT-2140
             Project: Mahout
          Issue Type: Bug
            Reporter: Trevor Grant


h2. CVE-2021-44228 was a pretty big vulnerability. Since we're still on log4j 1.x the upgrade is non-trivial, but also maybe not at serious for us.



--
This message was sent by Atlassian Jira
(v8.20.1#820001)