Details
-
Type:
Task
-
Status: Closed
-
Priority:
Major
-
Resolution: Fixed
-
Affects Version/s: 10.11.3
-
Fix Version/s: 11.2-rc-1
-
Component/s: Dependency Upgrades
-
Labels:None
-
Difficulty:Unknown
-
Documentation:N/A
-
Documentation in Release Notes:
-
Similar issues:
Description
See http://www.slf4j.org/news.html
Due to popular demand in relation to CVE-2018-8088, EventData, EventException and EventLogger classes were removed from the org.slf4j.ext package located in the slf4j-ext module. The aforementioned vulnerabilty has a low severty but was incorrectly marked critical in the National Vulnerability Database.