You are viewing a plain text version of this content. The canonical link for it is here.
Posted to commits@tomee.apache.org by "Martin Wiesner (JIRA)" <ji...@apache.org> on 2018/12/13 09:28:00 UTC
[jira] [Updated] (TOMEE-2362) Upgrade SL4J to mitigate
CVE-2018-8088
[ https://issues.apache.org/jira/browse/TOMEE-2362?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Martin Wiesner updated TOMEE-2362:
----------------------------------
Component/s: TomEE Core Server
> Upgrade SL4J to mitigate CVE-2018-8088
> --------------------------------------
>
> Key: TOMEE-2362
> URL: https://issues.apache.org/jira/browse/TOMEE-2362
> Project: TomEE
> Issue Type: Dependency upgrade
> Components: TomEE Core Server
> Affects Versions: 8.0.0-M1, 7.0.5, 7.1.0
> Reporter: Richard Zowalla
> Priority: Major
>
> I will open this issue as an reminder as *no release version* (besides BETA releases) is available for now.
> We need to upgrade SL4J to mitigate CVE-2018-8088 (see [https://nvd.nist.gov/vuln/detail/CVE-2018-8088)] in the near future.
>
--
This message was sent by Atlassian JIRA
(v7.6.3#76005)