[jira] [Updated] (PLUTO-787) Migrate from Log4j 1.x to Log4j 2.x due to CVE-2019-17571

Neil Griffin (Jira) Tue, 29 Jun 2021 13:57:03 -0700


     [ 
https://issues.apache.org/jira/browse/PLUTO-787?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]


Neil Griffin updated PLUTO-787:
-------------------------------
    Summary: Migrate from Log4j 1.x to Log4j 2.x due to CVE-2019-17571  (was: 
Migrate from Log4J and SLF4J dependencies due to CVE-2019-17571)

> Migrate from Log4j 1.x to Log4j 2.x due to CVE-2019-17571
> ---------------------------------------------------------
>
>                 Key: PLUTO-787
>                 URL: https://issues.apache.org/jira/browse/PLUTO-787
>             Project: Pluto
>          Issue Type: Task
>          Components: demo portlets
>            Reporter: Neil Griffin
>            Assignee: Neil Griffin
>            Priority: Major
>             Fix For: 3.1.1
>
>
> This task involves migrating the following dependencies due to 
> [CVE-2019-17571|https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17571]:
> - log4j:log4j -> org.apache.logging.log4j:log4j-api-2.14.1
> - org.slf4j:slf4j-log4j12 -> org.apache.logging.log4j:log4j-slf4j-impl-2.14.1



--
This message was sent by Atlassian Jira
(v8.3.4#803005)

[jira] [Updated] (PLUTO-787) Migrate from Log4j 1.x to Log4j 2.x due to CVE-2019-17571

Reply via email to