Uploaded image for project: 'Data Collection, Analytics, and Events'
  1. Data Collection, Analytics, and Events
  2. DCAEGEN2-3105

Remove log4j transitive dependency from VES-Mapper

XMLWordPrintable

      VES-mapper included following lib as transitive dependency. As this version is impacted by CVE-2021-44228, this Jira is to remove the transitive dependency

      Security - Critical vulnerabilities T
      log4j : log4j : 1.2.17

      Ref: 

      1. https://www.helpnetsecurity.com/2021/12/13/log4shell-update-cve-2021-44228/
      2. https://www.kaspersky.com/blog/log4shell-critical-vulnerability-in-apache-log4j/43124/

            mukesh.paliwal mukesh.paliwal
            vv770d vv770d
            Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

              Created:
              Updated:
              Resolved: