search

logzio / logzio-logback-appender

Logback Appender that ships logs using HTTPs bulk
Apache License 2.0
25 stars 19 forks source link

The logzio-logback-appender is vulnerable to CVE-2023-2976 #92

Open admin-athena opened 9 months ago

admin-athena commented 9 months ago

Here is the dependency:

[INFO] +- io.logz.logback:logzio-logback-appender:jar:1.0.24:compile
[INFO] |  \- com.google.guava:guava:jar:25.0-jre:compile

Upgrading the package should fix it.