dota17
commented
2 years ago Do we have plans to upgrade log4j2 to 2.117.1? CVE-2021-45105 affected.
Closed yyddz closed 1 year ago
dota17
commented
2 years ago Do we have plans to upgrade log4j2 to 2.117.1? CVE-2021-45105 affected.
spencergibb
commented
1 year ago All log4j dependencies are managed by spring boot and the upgrades have taken place there
Is spring-cloud-consul affected by the CVE-2021-44228 vulnerability of log4j2? Do we have plans to upgrade log4j2 to 2.16.0?