yujunjun/datahub
2
0
Fork 0
mirror of https://github.com/datahub-project/datahub.git synced 2025-06-27 05:03:31 +00:00
Code Issues Packages Projects Releases Wiki Activity

Upgrade to 3rd Apache patch for log4j (#3772)

Browse Source
This commit is contained in:
xiphl 2021-12-20 22:55:22 +08:00 committed by GitHub
parent 110efa68b9
commit 8cd1e91072
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
11 changed files with 44 additions and 44 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

8
metadata-dao-impl/kafka-producer/build.gradle
View File

@ -17,11 +17,11 @@ dependencies {
testCompile externalDependency.mockito
constraints {
implementation("org.apache.logging.log4j:log4j-core:2.16.0") {
because("previous versions are vulnerable to CVE-2021-44228")
implementation("org.apache.logging.log4j:log4j-core:2.17.0") {
because("previous versions are vulnerable to CVE-2021-45105")
}
implementation("org.apache.logging.log4j:log4j-api:2.16.0") {
because("previous versions are vulnerable to CVE-2021-44228")
implementation("org.apache.logging.log4j:log4j-api:2.17.0") {
because("previous versions are vulnerable to CVE-2021-45105")
}
}
}

8
metadata-events/mxe-registration/build.gradle
View File

@ -15,11 +15,11 @@ dependencies {
avroOriginal project(path: ':metadata-models', configuration: 'avroSchema')
constraints {
implementation("org.apache.logging.log4j:log4j-core:2.16.0") {
because("previous versions are vulnerable to CVE-2021-44228")
implementation("org.apache.logging.log4j:log4j-core:2.17.0") {
because("previous versions are vulnerable to CVE-2021-45105")
}
implementation("org.apache.logging.log4j:log4j-api:2.16.0") {
because("previous versions are vulnerable to CVE-2021-44228")
implementation("org.apache.logging.log4j:log4j-api:2.17.0") {
because("previous versions are vulnerable to CVE-2021-45105")
}
}
}

8
metadata-events/mxe-utils-avro-1.7/build.gradle
View File

@ -9,11 +9,11 @@ dependencies {
testCompile project(':metadata-testing:metadata-test-utils')
constraints {
implementation("org.apache.logging.log4j:log4j-core:2.16.0") {
because("previous versions are vulnerable to CVE-2021-44228")
implementation("org.apache.logging.log4j:log4j-core:2.17.0") {
because("previous versions are vulnerable to CVE-2021-45105")
}
implementation("org.apache.logging.log4j:log4j-api:2.16.0") {
because("previous versions are vulnerable to CVE-2021-44228")
implementation("org.apache.logging.log4j:log4j-api:2.17.0") {
because("previous versions are vulnerable to CVE-2021-45105")
}
}
}

8
metadata-ingestion-examples/common/build.gradle
View File

@ -19,11 +19,11 @@ dependencies {
runtime externalDependency.logbackClassic
constraints {
implementation("org.apache.logging.log4j:log4j-core:2.16.0") {
because("previous versions are vulnerable to CVE-2021-44228")
implementation("org.apache.logging.log4j:log4j-core:2.17.0") {
because("previous versions are vulnerable to CVE-2021-45105")
}
implementation("org.apache.logging.log4j:log4j-api:2.16.0") {
because("previous versions are vulnerable to CVE-2021-44228")
implementation("org.apache.logging.log4j:log4j-api:2.17.0") {
because("previous versions are vulnerable to CVE-2021-45105")
}
}
}

8
metadata-ingestion-examples/kafka-etl/build.gradle
View File

@ -22,11 +22,11 @@ dependencies {
runtime externalDependency.logbackClassic
constraints {
implementation("org.apache.logging.log4j:log4j-core:2.16.0") {
because("previous versions are vulnerable to CVE-2021-44228")
implementation("org.apache.logging.log4j:log4j-core:2.17.0") {
because("previous versions are vulnerable to CVE-2021-45105")
}
implementation("org.apache.logging.log4j:log4j-api:2.16.0") {
because("previous versions are vulnerable to CVE-2021-44228")
implementation("org.apache.logging.log4j:log4j-api:2.17.0") {
because("previous versions are vulnerable to CVE-2021-45105")
}
}
}

8
metadata-ingestion-examples/mce-cli/build.gradle
View File

@ -28,11 +28,11 @@ dependencies {
annotationProcessor externalDependency.picocli
constraints {
implementation("org.apache.logging.log4j:log4j-core:2.16.0") {
because("previous versions are vulnerable to CVE-2021-44228")
implementation("org.apache.logging.log4j:log4j-core:2.17.0") {
because("previous versions are vulnerable to CVE-2021-45105")
}
implementation("org.apache.logging.log4j:log4j-api:2.16.0") {
because("previous versions are vulnerable to CVE-2021-44228")
implementation("org.apache.logging.log4j:log4j-api:2.17.0") {
because("previous versions are vulnerable to CVE-2021-45105")
}
}

8
metadata-io/build.gradle
View File

@ -47,11 +47,11 @@ dependencies {
testAnnotationProcessor externalDependency.lombok
constraints {
implementation("org.apache.logging.log4j:log4j-core:2.16.0") {
because("previous versions are vulnerable to CVE-2021-44228")
implementation("org.apache.logging.log4j:log4j-core:2.17.0") {
because("previous versions are vulnerable to CVE-2021-45105")
}
implementation("org.apache.logging.log4j:log4j-api:2.16.0") {
because("previous versions are vulnerable to CVE-2021-44228")
implementation("org.apache.logging.log4j:log4j-api:2.17.0") {
because("previous versions are vulnerable to CVE-2021-45105")
}
}
}

8
metadata-service/restli-servlet-impl/build.gradle
View File

@ -24,11 +24,11 @@ configurations {
dependencies {
constraints {
implementation("org.apache.logging.log4j:log4j-core:2.16.0") {
because("previous versions are vulnerable to CVE-2021-44228")
implementation("org.apache.logging.log4j:log4j-core:2.17.0") {
because("previous versions are vulnerable to CVE-2021-45105")
}
implementation("org.apache.logging.log4j:log4j-api:2.16.0") {
because("previous versions are vulnerable to CVE-2021-44228")
implementation("org.apache.logging.log4j:log4j-api:2.17.0") {
because("previous versions are vulnerable to CVE-2021-45105")
}
}

8
metadata-testing/metadata-models-test-utils/build.gradle
View File

@ -12,11 +12,11 @@ dependencies {
compile externalDependency.neo4jHarness
constraints {
implementation("org.apache.logging.log4j:log4j-core:2.16.0") {
because("previous versions are vulnerable to CVE-2021-44228")
implementation("org.apache.logging.log4j:log4j-core:2.17.0") {
because("previous versions are vulnerable to CVE-2021-45105")
}
implementation("org.apache.logging.log4j:log4j-api:2.16.0") {
because("previous versions are vulnerable to CVE-2021-44228")
implementation("org.apache.logging.log4j:log4j-api:2.17.0") {
because("previous versions are vulnerable to CVE-2021-45105")
}
}
}

8
metadata-testing/metadata-test-utils/build.gradle
View File

@ -11,11 +11,11 @@ dependencies {
compile externalDependency.neo4jHarness
constraints {
implementation("org.apache.logging.log4j:log4j-core:2.16.0") {
because("previous versions are vulnerable to CVE-2021-44228")
implementation("org.apache.logging.log4j:log4j-core:2.17.0") {
because("previous versions are vulnerable to CVE-2021-45105")
}
implementation("org.apache.logging.log4j:log4j-api:2.16.0") {
because("previous versions are vulnerable to CVE-2021-44228")
implementation("org.apache.logging.log4j:log4j-api:2.17.0") {
because("previous versions are vulnerable to CVE-2021-45105")
}
}
}

8
metadata-utils/build.gradle
View File

@ -28,11 +28,11 @@ dependencies {
testCompile project(':metadata-testing:metadata-test-utils')
constraints {
implementation("org.apache.logging.log4j:log4j-core:2.16.0") {
because("previous versions are vulnerable to CVE-2021-44228")
implementation("org.apache.logging.log4j:log4j-core:2.17.0") {
because("previous versions are vulnerable to CVE-2021-45105")
}
implementation("org.apache.logging.log4j:log4j-api:2.16.0") {
because("previous versions are vulnerable to CVE-2021-44228")
implementation("org.apache.logging.log4j:log4j-api:2.17.0") {
because("previous versions are vulnerable to CVE-2021-45105")
}
}