This is an automated email from the ASF dual-hosted git repository.
slfan1989 pushed a commit to branch trunk
in repository https://gitbox.apache.org/repos/asf/hadoop.git
The following commit(s) were added to refs/heads/trunk by this push:
new baca63cb243 HADOOP-19765. Upgrade to log4j 2.25.3 due to
CVE-2025-68161 (#8157) Contributed by PJ Fanning
baca63cb243 is described below
commit baca63cb2432cbf698805816ba1cec037fad6559
Author: PJ Fanning <[email protected]>
AuthorDate: Sat Jan 3 14:07:40 2026 +0100
HADOOP-19765. Upgrade to log4j 2.25.3 due to CVE-2025-68161 (#8157)
Contributed by PJ Fanning
* HADOOP-19765. Upgrade to log4j 2.25.3 due to CVE-2025-68161
Signed-off-by: Shilun Fan <[email protected]>
---
hadoop-project/pom.xml | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/hadoop-project/pom.xml b/hadoop-project/pom.xml
index 8871fe4b295..f43f3a42c14 100644
--- a/hadoop-project/pom.xml
+++ b/hadoop-project/pom.xml
@@ -83,7 +83,7 @@
<!-- SLF4J/LOG4J version -->
<slf4j.version>1.7.36</slf4j.version>
<reload4j.version>1.2.22</reload4j.version>
- <log4j2.version>2.17.1</log4j2.version>
+ <log4j2.version>2.25.3</log4j2.version>
<!-- com.google.re2j version -->
<re2j.version>1.1</re2j.version>
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
