New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[Security] Upgrade library log4j to a newer version in all Singleton i18n/l10n Service #563

Closed

nannany00 opened this issue May 18, 2020 · 0 comments

Assignees

Labels

area/java-service kind/security priority/medium

Milestone

Contributor

nannany00 commented May 18, 2020

A vulnerability issue (CVE-2020-9488) for log4j occurs in Singleton i18n/l10n build, also lite version, it should be fixed on log4j 2.13.2, see https://issues.apache.org/jira/browse/LOG4J2-2819, please upgrade it in Singleton.

nannany00 added area/java-service kind/security priority/medium labels

gong-yu added this to the Sprint 81 milestone

gong-yu assigned tigershi

gong-yu closed this as completed

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment