Thanks to visit codestin.com
Credit goes to github.com

Skip to content

⬆️ Bump logback from 1.2.11 to 1.2.13 - CVE-2023-6481 #4036

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
May 16, 2024
Merged

⬆️ Bump logback from 1.2.11 to 1.2.13 - CVE-2023-6481 #4036

merged 1 commit into from
May 16, 2024

Conversation

@MDeLuise
Copy link
Contributor

This pull request addresses CVE-2023-6481 by updating the logback library to the 1.2.13 version.
The vulnerability posed a risk, and this update mitigates it effectively.

@codecov-commenter
Copy link

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 16.67%. Comparing base (c215cc9) to head (45efedd).

Additional details and impacted files

Impacted file tree graph

@@              Coverage Diff              @@
##             develop    #4036      +/-   ##
=============================================
- Coverage      16.71%   16.67%   -0.04%     
  Complexity        22       22              
=============================================
  Files           2009     2009              
  Lines          52223    52223              
  Branches        4437     4437              
=============================================
- Hits            8728     8708      -20     
- Misses         43092    43112      +20     
  Partials         403      403

see 2 files with indirect coverage changes

@Coduz Coduz added the Dependencies PR that updates dependencies. Be on the edge! label May 16, 2024
@Coduz Coduz merged commit 4edfd9c into eclipse-kapua:develop May 16, 2024
@Coduz Coduz changed the title ⬆️ Bump logback from 1.2.11 to 1.2.13 - CVE-2023-6481 ⬆️ [Dependencies] Bump logback from 1.2.11 to 1.2.13 - CVE-2023-6481 May 16, 2024
@Coduz Coduz changed the title ⬆️ [Dependencies] Bump logback from 1.2.11 to 1.2.13 - CVE-2023-6481 ⬆️ Bump logback from 1.2.11 to 1.2.13 - CVE-2023-6481 May 16, 2024
@MDeLuise MDeLuise deleted the improve-bumpLogback branch May 16, 2024 15:02
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@Coduz Coduz Coduz approved these changes

Assignees

No one assigned

Labels

Dependencies PR that updates dependencies. Be on the edge!

Projects

Eclipse Kapua 2.0.0
Status: Done
Eclipse Kapua 2.1.0
Status: Done

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@MDeLuise @codecov-commenter @Coduz