[JENKINS-67505] log4j dependency has critical vulnerability in Audit Log Plugin - Jenkins Jira

Type: Bug
Resolution: Unresolved
Priority: Minor
Component/s: audit-log-plugin
Labels:
- jcabot:001
- jcabot:002

Similar Issues:
Powered by SuggestiMate

Show
Epic Link:
log4j CVE-2021-44228 and CVE-2021-45046

The last update for log4j was to 2.16.0. New patches have been released in 2.17.1. Please can we have a new plugin version updated to use this?

Isobel Jones created issue - 2022-01-04 11:35

Jenkins CERT Bot made changes - 2022-01-29 21:49

Labels

New: jcabot:001

Jenkins CERT Bot made changes - 2022-01-29 22:03

Labels

Original: jcabot:001

New: jcabot:001 jcabot:002

Assignee:: Unassigned

Reporter:: Isobel Jones

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Created:: 2022-01-04 11:35

Updated:: 2022-01-29 22:03