tomee-commits mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Martin Wiesner (JIRA)" <j...@apache.org>
Subject [jira] [Updated] (TOMEE-2362) Upgrade SL4J to mitigate CVE-2018-8088
Date Thu, 13 Dec 2018 09:29:00 GMT

     [ https://issues.apache.org/jira/browse/TOMEE-2362?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]

Martin Wiesner updated TOMEE-2362:
----------------------------------
    Labels: security  (was: )

> Upgrade SL4J to mitigate CVE-2018-8088
> --------------------------------------
>
>                 Key: TOMEE-2362
>                 URL: https://issues.apache.org/jira/browse/TOMEE-2362
>             Project: TomEE
>          Issue Type: Dependency upgrade
>          Components: TomEE Core Server
>    Affects Versions: 8.0.0-M1, 7.0.5, 7.1.0
>            Reporter: Richard Zowalla
>            Priority: Major
>              Labels: security
>
> I will open this issue as an reminder as *no release version* (besides BETA releases)
is available for now.
> We need to upgrade SL4J to mitigate CVE-2018-8088 (see [https://nvd.nist.gov/vuln/detail/CVE-2018-8088)] in
the near future.
>  



--
This message was sent by Atlassian JIRA
(v7.6.3#76005)

Mime
View raw message