ranger-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Bolke de Bruin (Jira)" <j...@apache.org>
Subject [jira] [Updated] (RANGER-2782) Upgrade log4j dependency
Date Tue, 07 Apr 2020 12:18:00 GMT

     [ https://issues.apache.org/jira/browse/RANGER-2782?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]

Bolke de Bruin updated RANGER-2782:
-----------------------------------
    External issue URL: https://reviews.apache.org/r/72331/

> Upgrade log4j dependency
> ------------------------
>
>                 Key: RANGER-2782
>                 URL: https://issues.apache.org/jira/browse/RANGER-2782
>             Project: Ranger
>          Issue Type: Bug
>          Components: Ranger
>    Affects Versions: 2.0.0
>            Reporter: Bolke de Bruin
>            Assignee: Bolke de Bruin
>            Priority: Blocker
>             Fix For: 2.1.0
>
>         Attachments: 0001-RANGER-2782-Upgrade-log4j-to-a-supported-version.patch
>
>
> The current log4j version in ranger is end of life and contains critical security Vulnerabilities
> CVE-2019-17571



--
This message was sent by Atlassian Jira
(v8.3.4#803005)

Mime
View raw message