SLF4J / SLF4J-494 [Open] slf4j introduces the log4j version of 1.2.17. There is a security vulnerability. The security vulnerability CVE numbers are CVE-2019-17571 and CVE-2020-9488. Please fix it. ============================== Here's what changed in this issue in the last few minutes. This issue has been created This issue is now assigned to you. View or comment on issue using this link https://jira.qos.ch/browse/SLF4J-494 ============================== Issue created ------------------------------ zhongyuqin created this issue on 29/Jun/20 8:57 AM Summary: slf4j introduces the log4j version of 1.2.17. There is a security vulnerability. The security vulnerability CVE numbers are CVE-2019-17571 and CVE-2020-9488. Please fix it. Issue Type: Bug Affects Versions: 1.7.30 Assignee: SLF4J developers list Components: Core API Created: 29/Jun/20 8:57 AM Priority: Blocker Reporter: zhongyuqin ============================== This message was sent by Atlassian Jira (v8.8.0#808000-sha1:e2c7e59)