Uploaded image for project: 'ZooKeeper'
  1. ZooKeeper
  2. ZOOKEEPER-3817

owasp failing due to CVE-2020-9488

    XMLWordPrintableJSON

Details

    • Task
    • Status: Closed
    • Blocker
    • Resolution: Fixed
    • None
    • 3.7.0, 3.5.8, 3.6.2
    • security
    • None

    Description

      OWASP job is failing due to

      [ERROR] log4j-1.2.17.jar: CVE-2020-9488

      From the CVE summary it doesn't seem to affect us (SMTPS related which we don't use) but we should address, probably by whitelisting the CVE?

      Attachments

        Issue Links

          is related to

          Bug - A problem which impairs or prevents the functions of the product. ZOOKEEPER-2342 Migrate to Log4J 2.

          • Major - Major loss of function.
          • Resolved

          Activity

            People

              symat Mate Szalay-Beko
              phunt Patrick D. Hunt
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved:

                Time Tracking

                  Estimated:
                  Original Estimate - Not Specified
                  Not Specified
                  Remaining:
                  Remaining Estimate - 0h
                  0h
                  Logged:
                  Time Spent - 20m
                  20m