Closed sijie closed 3 years ago
Original Issue: apache/bookkeeper#2815
BUG REPORT
Describe the bug
Log4j1.x has a relevant and public security vulnerability: CVE-2019-17571. The solution is to upgrade Bookkeeper to log4j2 to remove that CVE.
To Reproduce
Scanning Bookkeeper image reports this CVE.
Expected behavior
Remove CVE from Bookkeeper.
Screenshots
n/a
Additional context
Original Issue: apache/bookkeeper#2815
BUG REPORT
Describe the bug
Log4j1.x has a relevant and public security vulnerability: CVE-2019-17571. The solution is to upgrade Bookkeeper to log4j2 to remove that CVE.
To Reproduce
Scanning Bookkeeper image reports this CVE.
Expected behavior
Remove CVE from Bookkeeper.
Screenshots
n/a
Additional context
n/a