That was just to demonstrate how i got the dependency chain, that file
was there, but if you're going to be this hostile, i'm not interested
anymore, muting thread
On Thu, 3 Mar 2022 at 08:48, Piotr Żygieło wrote:
>
> On Thu, 3 Mar 2022 at 08:37, Thomas Matthijs wrote:
> >
> > Can confirm this p
On Thu, 3 Mar 2022 at 08:37, Thomas Matthijs wrote:
>
> Can confirm this project downloads log4j 1.12.12 for me
As I see it - you confirm something else.
> Failed to read artifact descriptor for log4j:log4j:jar:1.2.12:
Failed to read artifact descriptor for log4j:log4j:jar:1.2.12:
_artifact des
The Apache Maven team is pleased to announce the release of the Maven Parent
POMs Version 35.
Maven Parent POMs include Maven Parent POM itself, but also Maven Plugins
Parent POM, Maven Shared Components Parent POM, Maven Skins Parent POM and
Maven Doxia Tools Parent POM.
https://maven.apache.o
Hello,
Can confirm this project downloads log4j 1.12.12 for me
rm -rf ~/.m2/repository/log4j/log4j
sudo chown root:root ~/.m2/repository/log4j/log4j
[ERROR] Failed to execute goal
org.apache.maven.plugins:maven-dependency-plugin:3.2.0:copy
(copy-artifact) on project demo: Execution copy-artifact
On Thu, 3 Mar 2022 at 07:27, Jaladi, Venumadhav
>
> Below I am pasting some of the information on the 3 vulnerabilities from
> our report.
It's hard to talk about that report, for (said at least twice) linked
reproducer does not demonstrate to actually download vulnerable
log4j:1.2.12 jar.
--
Pi
Hi,
The vote has passed with the following result:
+1 : Michael Osipov, Sylwester Lachiewicz, Slawomir Jaranowski, Tamás
Cservenák, Tibor Digana, Olivier Lamy, Karl Heinz Marbaise, Hervé Boutemy
PMC quorum reached
I will promote the source release zip file to Apache distribution area and the
here is my +1
On 2022/02/27 18:12:36 Hervé BOUTEMY wrote:
> Hi,
>
> We solved 18 issues:
> https://issues.apache.org/jira/secure/ReleaseNote.jspa?
projectId=12311250&version=12346694&stylename=Text
>
> Changes since the last release:
> https://github.com/apache/maven-parent/compare/maven-parent-
Hi,
Below I am pasting some of the information on the 3 vulnerabilities from
our report. FYI, I removed the information about the server details and
also trimmed the file path. This report is generated by the Tenable agent.
Severity scandate Vuln Name Description Summary Fix CVE ID CVS Base
Sco
