LOG-2103: Update ES to resolve CVE-2021-44832

openshift / origin-aggregated-logging

139 stars 231 forks source link

LOG-2103: Update ES to resolve CVE-2021-44832 #2231

Closed jcantrill closed 2 years ago

jcantrill commented 2 years ago

Description

This PR:

Fixes CVE-2021-44832 by bumping log4j to v2.17.1 for logging 5.0

Links

https://issues.redhat.com/browse/LOG-2103

openshift-ci[bot] commented 2 years ago

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: jcantrill

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Needs approval from an approver in each of these files: - ~~[OWNERS](https://github.com/openshift/origin-aggregated-logging/blob/release-5.0/OWNERS)~~ [jcantrill] Approvers can indicate their approval by writing `/approve` in a comment Approvers can cancel approval by writing `/approve cancel` in a comment

jcantrill commented 2 years ago

/retest

jcantrill commented 2 years ago

/retest

jcantrill commented 2 years ago

/retest

openshift-ci[bot] commented 2 years ago

@jcantrill: all tests passed!

Full PR test history. Your PR dashboard.

Instructions for interacting with me using PR comments are available [here](https://git.k8s.io/community/contributors/guide/pull-requests.md). If you have questions or suggestions related to my behavior, please file an issue against the [kubernetes/test-infra](https://github.com/kubernetes/test-infra/issues/new?title=Prow%20issue:) repository. I understand the commands that are listed [here](https://go.k8s.io/bot-commands).

syedriko commented 2 years ago

/lgtm