You are viewing a plain text version of this content. The canonical link for it is here.

Posted to notifications@logging.apache.org by GitBox <gi...@apache.org> on 2021/12/14 10:22:58 UTC

[GitHub] [logging-log4j2] quericy opened a new pull request #627: 2.12.1.sec1:Vulnerability fixed - based on 2.12.1 and supported Java7

quericy opened a new pull request #627:
URL: https://github.com/apache/logging-log4j2/pull/627


   This is a `log4j-core` [security-fixed](https://github.com/apache/logging-log4j2/pull/608) ([CVE-2021-44228](https://access.redhat.com/security/cve/CVE-2021-44228)) version based on `2.12.1` as it's the last version that supports `Java 7`.
   
   The patch code is exactly the same as version `2.16.0`.


-- 
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.

To unsubscribe, e-mail: notifications-unsubscribe@logging.apache.org

For queries about this service, please contact Infrastructure at:
users@infra.apache.org

[GitHub] [logging-log4j2] vy commented on pull request #627: 2.12.1.sec1:Vulnerability fixed - based on 2.12.1 and supported Java7

Posted by GitBox <gi...@apache.org>.

vy commented on pull request #627:
URL: https://github.com/apache/logging-log4j2/pull/627#issuecomment-993424437


   Hello @quericy! We also spent an entire day and night getting 2.12.2 out. That is a sweet coincidence. :sweat:
   
   The release is getting voted right not, should be out soon.
   
   I am closing this ticket since it duplicates the work in `log4j-2.12.2-rc1` tag. Feel free to re-open it if you have objections. All in all, thanks so much for your contribution!


-- 
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.

To unsubscribe, e-mail: notifications-unsubscribe@logging.apache.org

For queries about this service, please contact Infrastructure at:
users@infra.apache.org

[GitHub] [logging-log4j2] vy closed pull request #627: 2.12.1.sec1:Vulnerability fixed - based on 2.12.1 and supported Java7

Posted by GitBox <gi...@apache.org>.

vy closed pull request #627:
URL: https://github.com/apache/logging-log4j2/pull/627


   


-- 
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.

To unsubscribe, e-mail: notifications-unsubscribe@logging.apache.org

For queries about this service, please contact Infrastructure at:
users@infra.apache.org