Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Update dependency org.apache.logging.log4j:log4j-core to v2.16.0 #160

Open
wants to merge 1 commit into
base: main
Choose a base branch
from
Open

Update dependency org.apache.logging.log4j:log4j-core to v2.16.0 #160

wants to merge 1 commit into from

Conversation

mend-for-github-com[bot]
Copy link

@mend-for-github-com mend-for-github-com bot commented Oct 5, 2021
edited
Loading

This PR contains the following updates:

Package Update Change
org.apache.logging.log4j:log4j-core (source) minor 2.12.1 -> 2.16.0

By merging this PR, the below issues will be automatically resolved and closed:

Severity CVSS Score CVE GitHub Issue
High 10.0 CVE-2021-44228 #173
High 9.0 CVE-2021-45046 #175
Medium 6.6 CVE-2021-44832 #180
Medium 5.9 CVE-2021-45105 #179
Low 3.7 CVE-2020-9488 #94
Low 3.7 CVE-2020-9488 #29
  • If you want to rebase/retry this PR, click this checkbox.

@mend-for-github-com mend-for-github-com bot added the security fix Security fix generated by WhiteSource label Oct 5, 2021
@mend-for-github-com mend-for-github-com bot changed the title Update dependency org.apache.logging.log4j:log4j-core to v2.13.2 Update dependency org.apache.logging.log4j:log4j-core to v2.15.0 Dec 11, 2021
@mend-for-github-com mend-for-github-com bot force-pushed the whitesource-remediate/org.apache.logging.log4j-log4j-core-2.x branch from 721279f to 3e609d8 Compare December 11, 2021 01:25
@mend-for-github-com mend-for-github-com bot changed the title Update dependency org.apache.logging.log4j:log4j-core to v2.15.0 Update dependency org.apache.logging.log4j:log4j-core to v2.16.0 Dec 15, 2021
@mend-for-github-com mend-for-github-com bot force-pushed the whitesource-remediate/org.apache.logging.log4j-log4j-core-2.x branch from 3e609d8 to c0da93a Compare December 15, 2021 01:14
@mend-for-github-com mend-for-github-com bot changed the title Update dependency org.apache.logging.log4j:log4j-core to v2.16.0 Update dependency org.apache.logging.log4j:log4j-core to v2.13.2 Dec 16, 2021
@mend-for-github-com mend-for-github-com bot force-pushed the whitesource-remediate/org.apache.logging.log4j-log4j-core-2.x branch from c0da93a to 165ecb7 Compare December 16, 2021 01:02
@mend-for-github-com mend-for-github-com bot changed the title Update dependency org.apache.logging.log4j:log4j-core to v2.13.2 Update dependency org.apache.logging.log4j:log4j-core to v2.17.0 Dec 19, 2021
@mend-for-github-com mend-for-github-com bot force-pushed the whitesource-remediate/org.apache.logging.log4j-log4j-core-2.x branch from 165ecb7 to 3485378 Compare December 19, 2021 01:05
@mend-for-github-com mend-for-github-com bot changed the title Update dependency org.apache.logging.log4j:log4j-core to v2.17.0 Update dependency org.apache.logging.log4j:log4j-core to v2.12.4 Feb 5, 2022
@mend-for-github-com mend-for-github-com bot force-pushed the whitesource-remediate/org.apache.logging.log4j-log4j-core-2.x branch from 3485378 to ac5c37c Compare February 5, 2022 01:13
@mend-for-github-com mend-for-github-com bot changed the title Update dependency org.apache.logging.log4j:log4j-core to v2.12.4 Update dependency org.apache.logging.log4j:log4j-core to v2.13.2 Feb 6, 2022
@mend-for-github-com mend-for-github-com bot force-pushed the whitesource-remediate/org.apache.logging.log4j-log4j-core-2.x branch from ac5c37c to 704abe4 Compare February 6, 2022 17:16
@mend-for-github-com mend-for-github-com bot changed the title Update dependency org.apache.logging.log4j:log4j-core to v2.13.2 Update dependency org.apache.logging.log4j:log4j-core to v2.12.4 Feb 7, 2022
@mend-for-github-com mend-for-github-com bot force-pushed the whitesource-remediate/org.apache.logging.log4j-log4j-core-2.x branch from 704abe4 to 9e71261 Compare February 7, 2022 13:59
@mend-for-github-com mend-for-github-com bot changed the title Update dependency org.apache.logging.log4j:log4j-core to v2.12.4 Update dependency org.apache.logging.log4j:log4j-core to v2.13.2 Feb 8, 2022
@mend-for-github-com mend-for-github-com bot force-pushed the whitesource-remediate/org.apache.logging.log4j-log4j-core-2.x branch from 9e71261 to 678d40c Compare February 8, 2022 02:33
@mend-for-github-com mend-for-github-com bot changed the title Update dependency org.apache.logging.log4j:log4j-core to v2.13.2 Update dependency org.apache.logging.log4j:log4j-core to v2.12.4 Feb 21, 2022
@mend-for-github-com mend-for-github-com bot force-pushed the whitesource-remediate/org.apache.logging.log4j-log4j-core-2.x branch from 678d40c to f219ba4 Compare February 21, 2022 05:20
@mend-for-github-com mend-for-github-com bot changed the title Update dependency org.apache.logging.log4j:log4j-core to v2.12.4 Update dependency org.apache.logging.log4j:log4j-core to v2.13.2 Feb 21, 2022
@mend-for-github-com mend-for-github-com bot force-pushed the whitesource-remediate/org.apache.logging.log4j-log4j-core-2.x branch from f219ba4 to 6eaa78c Compare February 21, 2022 18:35
@mend-for-github-com mend-for-github-com bot changed the title Update dependency org.apache.logging.log4j:log4j-core to v2.13.2 Update dependency org.apache.logging.log4j:log4j-core to v2.12.4 Feb 22, 2022
@mend-for-github-com mend-for-github-com bot force-pushed the whitesource-remediate/org.apache.logging.log4j-log4j-core-2.x branch from 6eaa78c to 852f657 Compare February 22, 2022 10:56
@mend-for-github-com mend-for-github-com bot changed the title Update dependency org.apache.logging.log4j:log4j-core to v2.12.4 Update dependency org.apache.logging.log4j:log4j-core to v2.13.2 Feb 22, 2022
@mend-for-github-com mend-for-github-com bot force-pushed the whitesource-remediate/org.apache.logging.log4j-log4j-core-2.x branch from 852f657 to 99c2eae Compare February 22, 2022 22:49
@mend-for-github-com mend-for-github-com bot changed the title Update dependency org.apache.logging.log4j:log4j-core to v2.13.2 Update dependency org.apache.logging.log4j:log4j-core to v2.12.4 Feb 23, 2022
@mend-for-github-com mend-for-github-com bot force-pushed the whitesource-remediate/org.apache.logging.log4j-log4j-core-2.x branch from 99c2eae to 4cb6e2a Compare February 23, 2022 15:17
@mend-for-github-com mend-for-github-com bot changed the title Update dependency org.apache.logging.log4j:log4j-core to v2.12.4 Update dependency org.apache.logging.log4j:log4j-core to v2.13.2 Feb 24, 2022
@mend-for-github-com mend-for-github-com bot force-pushed the whitesource-remediate/org.apache.logging.log4j-log4j-core-2.x branch from 4cb6e2a to b1176b2 Compare February 24, 2022 04:44
@mend-for-github-com mend-for-github-com bot changed the title Update dependency org.apache.logging.log4j:log4j-core to v2.13.2 Update dependency org.apache.logging.log4j:log4j-core to v2.12.4 Feb 25, 2022
@mend-for-github-com mend-for-github-com bot force-pushed the whitesource-remediate/org.apache.logging.log4j-log4j-core-2.x branch from 4112cec to d9f936f Compare April 25, 2022 01:07
@mend-for-github-com mend-for-github-com bot changed the title Update dependency org.apache.logging.log4j:log4j-core to v2.12.4 Update dependency org.apache.logging.log4j:log4j-core to v2.13.2 Apr 26, 2022
@mend-for-github-com mend-for-github-com bot force-pushed the whitesource-remediate/org.apache.logging.log4j-log4j-core-2.x branch from d9f936f to edd40ce Compare April 26, 2022 05:29
@mend-for-github-com mend-for-github-com bot changed the title Update dependency org.apache.logging.log4j:log4j-core to v2.13.2 Update dependency org.apache.logging.log4j:log4j-core to v2.12.4 Apr 26, 2022
@mend-for-github-com mend-for-github-com bot force-pushed the whitesource-remediate/org.apache.logging.log4j-log4j-core-2.x branch from edd40ce to bf66636 Compare April 26, 2022 15:43
@mend-for-github-com mend-for-github-com bot changed the title Update dependency org.apache.logging.log4j:log4j-core to v2.12.4 Update dependency org.apache.logging.log4j:log4j-core to v2.13.2 Apr 28, 2022
@mend-for-github-com mend-for-github-com bot force-pushed the whitesource-remediate/org.apache.logging.log4j-log4j-core-2.x branch from bf66636 to 78e31d0 Compare April 28, 2022 08:49
@mend-for-github-com mend-for-github-com bot changed the title Update dependency org.apache.logging.log4j:log4j-core to v2.13.2 Update dependency org.apache.logging.log4j:log4j-core to v2.12.4 Apr 29, 2022
@mend-for-github-com mend-for-github-com bot force-pushed the whitesource-remediate/org.apache.logging.log4j-log4j-core-2.x branch from 78e31d0 to af06eaa Compare April 29, 2022 00:07
@mend-for-github-com mend-for-github-com bot changed the title Update dependency org.apache.logging.log4j:log4j-core to v2.12.4 Update dependency org.apache.logging.log4j:log4j-core to v2.13.2 Apr 29, 2022
@mend-for-github-com mend-for-github-com bot force-pushed the whitesource-remediate/org.apache.logging.log4j-log4j-core-2.x branch from af06eaa to f38d3f8 Compare April 29, 2022 13:35
@mend-for-github-com mend-for-github-com bot changed the title Update dependency org.apache.logging.log4j:log4j-core to v2.13.2 Update dependency org.apache.logging.log4j:log4j-core to v2.12.4 Apr 30, 2022
@mend-for-github-com mend-for-github-com bot force-pushed the whitesource-remediate/org.apache.logging.log4j-log4j-core-2.x branch from f38d3f8 to c6ef169 Compare April 30, 2022 03:44
@mend-for-github-com mend-for-github-com bot changed the title Update dependency org.apache.logging.log4j:log4j-core to v2.12.4 Update dependency org.apache.logging.log4j:log4j-core to v2.13.2 Apr 30, 2022
@mend-for-github-com mend-for-github-com bot force-pushed the whitesource-remediate/org.apache.logging.log4j-log4j-core-2.x branch from c6ef169 to 16bfe36 Compare April 30, 2022 17:25
@mend-for-github-com mend-for-github-com bot changed the title Update dependency org.apache.logging.log4j:log4j-core to v2.13.2 Update dependency org.apache.logging.log4j:log4j-core to v2.12.4 May 1, 2022
@mend-for-github-com mend-for-github-com bot force-pushed the whitesource-remediate/org.apache.logging.log4j-log4j-core-2.x branch from 16bfe36 to 0e6e02f Compare May 1, 2022 07:47
@mend-for-github-com mend-for-github-com bot changed the title Update dependency org.apache.logging.log4j:log4j-core to v2.12.4 Update dependency org.apache.logging.log4j:log4j-core to v2.13.2 May 1, 2022
@mend-for-github-com mend-for-github-com bot force-pushed the whitesource-remediate/org.apache.logging.log4j-log4j-core-2.x branch from 0e6e02f to 34e765b Compare May 1, 2022 17:48
@mend-for-github-com mend-for-github-com bot changed the title Update dependency org.apache.logging.log4j:log4j-core to v2.13.2 Update dependency org.apache.logging.log4j:log4j-core to v2.12.4 May 2, 2022
@mend-for-github-com mend-for-github-com bot force-pushed the whitesource-remediate/org.apache.logging.log4j-log4j-core-2.x branch from 34e765b to 72c719d Compare May 2, 2022 06:44
@mend-for-github-com mend-for-github-com bot changed the title Update dependency org.apache.logging.log4j:log4j-core to v2.12.4 Update dependency org.apache.logging.log4j:log4j-core to v2.13.2 May 2, 2022
@mend-for-github-com mend-for-github-com bot force-pushed the whitesource-remediate/org.apache.logging.log4j-log4j-core-2.x branch from 72c719d to 9a58693 Compare May 2, 2022 20:18
@mend-for-github-com mend-for-github-com bot changed the title Update dependency org.apache.logging.log4j:log4j-core to v2.13.2 Update dependency org.apache.logging.log4j:log4j-core to v2.12.4 May 3, 2022
@mend-for-github-com mend-for-github-com bot force-pushed the whitesource-remediate/org.apache.logging.log4j-log4j-core-2.x branch from 9a58693 to d67830c Compare May 3, 2022 11:34
@mend-for-github-com mend-for-github-com bot changed the title Update dependency org.apache.logging.log4j:log4j-core to v2.12.4 Update dependency org.apache.logging.log4j:log4j-core to v2.13.2 May 4, 2022
@mend-for-github-com mend-for-github-com bot force-pushed the whitesource-remediate/org.apache.logging.log4j-log4j-core-2.x branch from d67830c to e63dc9b Compare May 4, 2022 04:58
@mend-for-github-com mend-for-github-com bot changed the title Update dependency org.apache.logging.log4j:log4j-core to v2.13.2 Update dependency org.apache.logging.log4j:log4j-core to v2.16.0 May 4, 2022
@mend-for-github-com mend-for-github-com bot force-pushed the whitesource-remediate/org.apache.logging.log4j-log4j-core-2.x branch from e63dc9b to af53cf2 Compare May 4, 2022 23:11
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
security fix Security fix generated by WhiteSource
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
0 participants