Hi,
Snyk advices that there is an Arbitrary Code Execution vulnerability in logback-syslog4j introduced through "ch.qos.logback:logback-classic@1.1.2" and "ch.qos.logback:logback-core@1.1.2". Are there any plans of upgrading ch.qos.logback version to 1.2.0?
Thanks.
Hi, Snyk advices that there is an Arbitrary Code Execution vulnerability in logback-syslog4j introduced through "ch.qos.logback:logback-classic@1.1.2" and "ch.qos.logback:logback-core@1.1.2". Are there any plans of upgrading ch.qos.logback version to 1.2.0? Thanks.