zookeeper icon indicating copy to clipboard operation
zookeeper copied to clipboard
verified publisher icon apache

ZOOKEEPER-4825:Updating logback version from 1.2.13 to 1.4.12

Open Vivekgoku20 opened this issue 1 year ago • 1 comments

ZOOKEEPER-4825 - updating the logback version to 1.4.12 since the current version(1.2.13) has CVE-2023-6378 vulnerability. Refer - https://logback.qos.ch/news.html for more details on the release notes. referred - https://mvnrepository.com/artifact/ch.qos.logback/logback-classic , for vulnerabilities in different versions

Vivekgoku20 avatar Apr 17 '24 17:04 Vivekgoku20

we can only update to logback 1.3.x, because logback 1.4.x will need java11 :) I created #2162 to fix this issue. PTAL

hezhangjian avatar Apr 30 '24 00:04 hezhangjian

This is superseded by #2162. Thanks for your contribution @Vivekgoku20!

tisonkun avatar Jul 05 '24 18:07 tisonkun