Uploaded image for project: 'Apache Cassandra'
  1. Apache Cassandra
  2. CASSANDRA-16464

Upgrade to logback package 1.2.0 or later fix high vulnerabilities

    XMLWordPrintableJSON

Details

    • Improvement
    • Status: Resolved
    • Normal
    • Resolution: Won't Fix
    • 3.0.25
    • Dependencies
    • None
    • Operability
    • Low Hanging Fruit
    • All
    • None

    Description

      Tag | Distro | CVE ID | Severity | Packages | Source Package | Fix Package Version
      – | – | – | – | – | – | –
      v0.1.22 | Ubuntu-bionic | CVE-2017-5929 | critical | ch.qos.logback_logback-core | 1.1.3 | fixed in 1.2.0

      Attachments

        Issue Links

          duplicates

          Improvement - An improvement or enhancement to an existing feature or task. CASSANDRA-14183 CVE-2017-5929 Security vulnerability and redefine default log rotation policy

          • Normal -
          • Resolved

          Activity

            People

              brandon.williams Brandon Williams
              joshib Bhargav Joshi
              Brandon Williams
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved:

                Time Tracking

                  Estimated:
                  Original Estimate - Not Specified
                  Not Specified
                  Remaining:
                  Remaining Estimate - 0h
                  0h
                  Logged:
                  Time Spent - 40m
                  40m