danbi Han created ZEPPELIN-5613: ----------------------------------- Summary: Zeppelin 0.10.0 is okay from log4j security ? Key: ZEPPELIN-5613 URL: https://issues.apache.org/jira/browse/ZEPPELIN-5613 Project: Zeppelin Issue Type: Test Reporter: danbi Han
Zeppelin 0.10.0 use log4j 1.2.x version. 1.x version is EOL, so I think zeppelin needs update to latest version of log4j (maybe v2.16) is it okay from log4j issues? * log4j issues ** [https://logging.apache.org/log4j/2.x/security.html] -- This message was sent by Atlassian Jira (v8.20.1#820001)