search

qunarcorp / bistoury

Bistoury是去哪儿网的java应用生产问题诊断工具,提供了一站式的问题诊断方案
GNU General Public License v3.0
4k stars 824 forks source link

There is a vulnerability in Simple Logging Facade for Java (SLF4J) 1.7.5,upgrade recommended #132

Open QiAnXinCodeSafe opened 2 years ago

QiAnXinCodeSafe commented 2 years ago

https://github.com/qunarcorp/bistoury/blob/b83b87032c3a394df31300a4fe3a1123cf6d7917/pom.xml#L89

CVE-2018-8088

Recommended upgrade version: 1.7.7.jbossorg-1