You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@struts.apache.org by "Lukasz Lenart (Jira)" <ji...@apache.org> on 2021/12/30 12:33:00 UTC

[jira] [Resolved] (WW-5162) Upgrade Log4j to version 2.17.1 to address security vulnerability

     [ https://issues.apache.org/jira/browse/WW-5162?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Lukasz Lenart resolved WW-5162.
-------------------------------
    Resolution: Fixed

PR got merged

> Upgrade Log4j to version 2.17.1 to address security vulnerability
> -----------------------------------------------------------------
>
>                 Key: WW-5162
>                 URL: https://issues.apache.org/jira/browse/WW-5162
>             Project: Struts 2
>          Issue Type: Dependency
>          Components: Core
>            Reporter: Lukasz Lenart
>            Priority: Major
>             Fix For: 2.6
>
>
> This version addresses https://nvd.nist.gov/vuln/detail/CVE-2021-44832
> https://github.com/apache/struts/pull/521



--
This message was sent by Atlassian Jira
(v8.20.1#820001)