Skip to content

Update log4j2 for CVE #6063

New issue
New issue
Closed
#6064
Closed
Update log4j2 for CVE#6063
#6064
Assignees
ddanielr
Milestone
2.1.5
@PJGuyTen

Description

@PJGuyTen
PJGuyTen
opened on Jan 15, 2026

Accumulo version: 2.1.4
log4j2 version: 2.25.1 https://github.com/apache/accumulo/blob/2.1/pom.xml#L173
Proposed log4j2 version: 2.25.3
CVE: CVE-2025-68161 https://nvd.nist.gov/vuln/detail/CVE-2025-68161

Metadata

Metadata

Assignees

Labels

No labels
No labels

Type

No type

Projects

No projects

Milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions