[ https://issues.apache.org/jira/browse/LOGGING-180?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Gary D. Gregory resolved LOGGING-180. ------------------------------------- Fix Version/s: 1.3.1 Resolution: Fixed > Upgrade commons logging log4j dependency versions to 2.17.0 and above > --------------------------------------------------------------------- > > Key: LOGGING-180 > URL: https://issues.apache.org/jira/browse/LOGGING-180 > Project: Commons Logging > Issue Type: Bug > Affects Versions: 1.1.1, 1.2 > Reporter: Swyrik Thupili > Priority: Major > Fix For: 1.3.1 > > > Please update the log4j 2 version to the log4j 2.17.0 and above. As the > current versions are susceptible to > [CVE-2021-44832|https://github.com/advisories/GHSA-8489-44mv-ggj8] Security > Vulnerability. -- This message was sent by Atlassian Jira (v8.20.10#820010)