search

projectodd / wunderboss

The next-generation polyglot platform for TorqueBox and Immutant
Apache License 2.0
17 stars 11 forks source link

Upgraded logback to 1.2.3 eliminating vulnerability CVE-2017-5929 #20

Open gavinkflam opened 6 years ago

gavinkflam commented 6 years ago

There is a critical (9.8) severity vulnerability in logback-core 1.1.3. Please refer to #19 for more details.

All tests have passed.

vheuken commented 6 years ago

Any reason this hasn't been applied?

bbrowning commented 6 years ago

I don't believe anyone is actively maintaining this project. If I'm incorrect, hopefully they'll speak up?