Skip to content

Commit

Permalink
Upgrade log4j to fix CVE-2021-45105 issue: (#108)
Browse files Browse the repository at this point in the history 
- "Apache Log4j2 does not always protect from infinite recursion in
    lookup evaluation". See  https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-45105

Co-authored-by: Raul Garcia and Stephen Wink <[email protected]>
  • Loading branch information
@rauligsky
rauligsky and Raul Garcia and Stephen Wink authored Dec 21, 2021
1 parent 2836583 commit d8cad30
Showing 1 changed file with 1 addition and 1 deletion.
2 changes: 1 addition & 1 deletion build.gradle
View file
Original file line number Diff line number Diff line change
Expand Up @@ -48,7 +48,7 @@ dependencies {
implementation('org.slf4j:slf4j-api:1.7.25')

testImplementation("com.google.guava:guava:25.1-jre")
testImplementation('org.apache.logging.log4j:log4j-core:2.16.0')
testImplementation('org.apache.logging.log4j:log4j-core:2.17.0')
testImplementation('junit:junit:4.12')
testImplementation('org.assertj:assertj-core:3.12.2')
testImplementation('org.mockito:mockito-core:2.25.1')
Expand Down

0 comments on commit d8cad30

Please sign in to comment.