[ https://issues.apache.org/jira/browse/CASSANDRA-15829?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Benjamin Lerer updated CASSANDRA-15829: --------------------------------------- Bug Category: Parent values: Security(12985)Level 1 values: Remote Code Execution(13002) Complexity: Low Hanging Fruit Component/s: Dependencies Discovered By: User Report Severity: Critical Status: Open (was: Triage Needed) > Upgrade to logback 1.2.3 to address CVE-2017-5929 > ------------------------------------------------- > > Key: CASSANDRA-15829 > URL: https://issues.apache.org/jira/browse/CASSANDRA-15829 > Project: Cassandra > Issue Type: Bug > Components: Dependencies > Reporter: Kevin Eveker > Assignee: Mark Denihan > Priority: High > Fix For: 2.2.x, 3.0.x, 3.11.x > > > Recent scan results identified the following CVE that requires this upgrade > to address > [https://nvd.nist.gov/vuln/detail/CVE-2017-5929] -- This message was sent by Atlassian Jira (v8.3.4#803005) --------------------------------------------------------------------- To unsubscribe, e-mail: commits-unsubscr...@cassandra.apache.org For additional commands, e-mail: commits-h...@cassandra.apache.org