You are viewing a plain text version of this content. The canonical link for it is here.
Posted to pluto-dev@portals.apache.org by "Neil Griffin (Jira)" <ji...@apache.org> on 2021/06/29 20:56:00 UTC
[jira] [Updated] (PLUTO-787) Migrate from log4j:log4j to
org.apache.logging.log4j:log4j-core-2.14.1
[ https://issues.apache.org/jira/browse/PLUTO-787?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Neil Griffin updated PLUTO-787:
-------------------------------
Description:
This task involves migrating the following dependencies due to [CVE-2019-17571|https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17571]:
- log4j:log4j -> org.apache.logging.log4j:log4j-api-2.14.1
- org.slf4j:slf4j-log4j12 -> org.apache.logging.log4j:log4j-slf4j-impl-2.14.1
was:This task involves migrating from log4j:log4j to org.apache.logging.log4j:log4j-core-2.14.1 due to [CVE-2019-17571|https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17571].
> Migrate from log4j:log4j to org.apache.logging.log4j:log4j-core-2.14.1
> ----------------------------------------------------------------------
>
> Key: PLUTO-787
> URL: https://issues.apache.org/jira/browse/PLUTO-787
> Project: Pluto
> Issue Type: Task
> Components: demo portlets
> Reporter: Neil Griffin
> Assignee: Neil Griffin
> Priority: Major
> Fix For: 3.1.1
>
>
> This task involves migrating the following dependencies due to [CVE-2019-17571|https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17571]:
> - log4j:log4j -> org.apache.logging.log4j:log4j-api-2.14.1
> - org.slf4j:slf4j-log4j12 -> org.apache.logging.log4j:log4j-slf4j-impl-2.14.1
--
This message was sent by Atlassian Jira
(v8.3.4#803005)