[slf4j-dev] [JIRA] Updates for SLF4J-538: There are high-risk vulnerabilities in Apache Log4j 1.x of SLF4J
QOS.CH (JIRA)
noreply-jira at qos.ch
Sat Jan 22 03:12:00 CET 2022
SLF4J / SLF4J-538 [Open]
There are high-risk vulnerabilities in Apache Log4j 1.x of SLF4J
==============================
Here's what changed in this issue in the last few minutes.
This issue has been created
This issue is now assigned to you.
View or comment on issue using this link
https://jira.qos.ch/browse/SLF4J-538
==============================
Issue created
------------------------------
zhengqin created this issue on 22/Jan/22 3:01 AM
Summary: There are high-risk vulnerabilities in Apache Log4j 1.x of SLF4J
Issue Type: Bug
Affects Versions: 1.7.30, 1.7.31, 1.7.32, 1.7.33
Assignee: SLF4J developers list
Created: 22/Jan/22 3:01 AM
Labels: vulnerabilities
Priority: Critical
Reporter: zhengqin
Severity: critical
Description:
[https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23307]
[https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23305]
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23302
==============================
This message was sent by Atlassian Jira (v8.8.0#808000-sha1:e2c7e59)
More information about the slf4j-dev
mailing list