[XCOMMONS-2282] Upgrade to Logback 1.2.6 - XWiki.org JIRA

XML

Word

Printable

Details

Type: Task
Status: Closed
Priority: Major
Resolution: Fixed
Affects Version/s: 13.9-rc-1
Fix Version/s: 12.10.11, 13.9-rc-1, 13.4.6
Component/s: Dependency Upgrades
Labels:
None

Difficulty:
Unknown
Documentation:
N/A
Documentation in Release Notes:
https://www.xwiki.org/xwiki/bin/view/ReleaseNotes/Data/XWiki/13.9RC1/#HUpgrades
Similar issues:

Description

See https://logback.qos.ch/news.html

• To prevent XML eXternal Entity injection (XXE) attacks, Joran no longer reads external entities passed in XML files. This fixes LOGBACK-1465 as reported by Shuibo Ye.

Attachments

Activity

People

Assignee:: Thomas Mortagne

Reporter:: Thomas Mortagne

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Dates

Created:: 05/Oct/21 17:49

Updated:: 15/Dec/21 09:15

Resolved:: 05/Oct/21 17:50