github
/
halo
mirror of https://github.com/halo-dev/halo
1
0
Fork 0
Code Issues Releases Wiki Activity

fix: Log4j Security Vulnerabilities (#1604) 

update Log4j version to 2.17.0
- CVE-2021-45105 Fixed in Log4j 2.17.0 (Java 8)
- CVE-2021-45046 Fixed in Log4j 2.16.0 (Java 8)
pull/1614/head
Tang 2021-12-22 16:41:03 +08:00 committed by GitHub
parent 9ddd74b74b
commit 201e93465c
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 2 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
build.gradle
View File

@ -34,10 +34,10 @@ configurations {
} }
configurations.all { configurations.all {
// Aligning log4j dependency versions to 2.15.0 // Aligning log4j dependency versions to 2.17.0
resolutionStrategy.eachDependency { DependencyResolveDetails details -> resolutionStrategy.eachDependency { DependencyResolveDetails details ->
if (details.requested.group == 'org.apache.logging.log4j') { if (details.requested.group == 'org.apache.logging.log4j') {
details.useVersion '2.15.0' details.useVersion '2.17.0'
} }
} }
} }