You are viewing a plain text version of this content. The canonical link for it is here.

Posted to java-dev@axis.apache.org by "PJ Fanning (Jira)" <ji...@apache.org> on 2022/02/07 18:39:00 UTC

[jira] [Commented] (AXIS2-5857) Log4j 1.x has reached EOL

    [ https://issues.apache.org/jira/browse/AXIS2-5857?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17488336#comment-17488336 ] 

PJ Fanning commented on AXIS2-5857:
-----------------------------------

[https://logging.apache.org/log4j/2.x/manual/migration.html] has details about how to migrate

>  Log4j 1.x has reached EOL
> --------------------------
>
>                 Key: AXIS2-5857
>                 URL: https://issues.apache.org/jira/browse/AXIS2-5857
>             Project: Axis2
>          Issue Type: Improvement
>    Affects Versions: 1.7.5
>            Reporter: spoorti
>            Priority: Minor
>
> The log4j 1.x has reached EOL. Even the latest release version of Axis2 contains the 1.x version of the log4j.
> It need to be upgraded to 2.8.2 or higher since the other 2.x versions has vulnerability reported.



--
This message was sent by Atlassian Jira
(v8.20.1#820001)

---------------------------------------------------------------------
To unsubscribe, e-mail: java-dev-unsubscribe@axis.apache.org
For additional commands, e-mail: java-dev-help@axis.apache.org