[jira] [Commented] (JENA-2211) upgrade log4j2 from 2.14.1 to 2.15.0

Andy Seaborne (Jira) Fri, 10 Dec 2021 05:01:06 -0800


    [ 
https://issues.apache.org/jira/browse/JENA-2211?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17457132#comment-17457132
 ]


Andy Seaborne commented on JENA-2211:
-------------------------------------

Done with [commit 
36930b7bbb|https://github.com/apache/jena/commit/36930b7bbb056d22a5f51ab888a46245dc9f11e7].

 

> upgrade log4j2 from 2.14.1 to 2.15.0
> ------------------------------------
>
>                 Key: JENA-2211
>                 URL: https://issues.apache.org/jira/browse/JENA-2211
>             Project: Apache Jena
>          Issue Type: Dependency upgrade
>            Reporter: Øyvind Gjesdal
>            Priority: Major
>
> There is CVE 2021-4228 for log4j2. Not sure how it affects the the different 
> artifacts. https://github.com/advisories/GHSA-jfh8-c2jp-5v3q
>  



--
This message was sent by Atlassian Jira
(v8.20.1#820001)

[jira] [Commented] (JENA-2211) upgrade log4j2 from 2.14.1 to 2.15.0

Reply via email to