View Issue Details
| ID | Project | Category | View Status | Date Submitted | Last Update |
|---|---|---|---|---|---|
| 0003528 | SymmetricDS | Task | public | 2018-04-23 20:02 | 2018-07-12 18:12 |
| Reporter | Frank.Conover | Assigned To | chenson | ||
| Priority | normal | ||||
| Status | closed | Resolution | no change required | ||
| Product Version | 3.9.6 | ||||
| Summary | 0003528: The log4j library has a vulnerability. | ||||
| Description | The log4j library has a vulnerability. log4j-1.2.17.jar , CVE-2017-5645 , Severity: High This library has reached end of life. Upgrade to log4j 2. | ||||
| Tags | No tags attached. | ||||
|
|
This has been reported as a false positive. Log4j version 1 is under review and a new CVE will be created if one exists. I don't seem to be able to close this ticket. |
| Date Modified | Username | Field | Change |
|---|---|---|---|
| 2018-04-23 20:02 | Frank.Conover | New Issue | |
| 2018-07-12 17:51 | Frank.Conover | Note Added: 0001216 | |
| 2018-07-12 18:12 | chenson | Assigned To | => chenson |
| 2018-07-12 18:12 | chenson | Status | new => closed |
| 2018-07-12 18:12 | chenson | Resolution | open => no change required |