Skip to content

Commit

Permalink
Mark Log4j 2.15 as vulnerable
Browse files Browse the repository at this point in the history 
Follows publication of
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-45046

Issue #19300
  • Loading branch information
@ljacomet
ljacomet committed Dec 14, 2021
1 parent 53f3d20 commit 0122afa
Showing 1 changed file with 1 addition and 1 deletion.
2 changes: 1 addition & 1 deletion subprojects/logging/src/main/java/org/gradle/internal/logging/util/Log4jBannedVersion.java
View file
Expand Up @@ -22,6 +22,6 @@
*/
public class Log4jBannedVersion {
public static final String LOG4J2_CORE_COORDINATES = "org.apache.logging.log4j:log4j-core";
public static final String LOG4J2_CORE_VULNERABLE_VERSION_RANGE = "[2.0, 2.15[";
public static final String LOG4J2_CORE_VULNERABLE_VERSION_RANGE = "[2.0, 2.16)";
public static final String LOG4J2_CORE_REQUIRED_VERSION = "2.16.0";
}

0 comments on commit 0122afa

Please sign in to comment.