Upgrade slf4j version

Description

org.slf4j.ext.EventData in the slf4j-ext module in QOS.CH SLF4J before 1.8.0-beta2 allows remote attackers to bypass intended access restrictions via crafted data.

There are no client facing API changes in 1.8.x. For most users upgrading to version 1.8.x should be a drop-in replacement as long as the logging provider is updated as well.

Environment

None

Status

Assignee

Unassigned

Reporter

Aaron Hoffer

Labels

None

Components

Priority

Critical
Configure