User Profile

MarkJohnsonekl

New Contributor

Joined 4 years ago

3 Posts1 LikeLikes received1 Solution

View All Badges

User Widgets

Contributions

Re: Will SoapUI 5.6.1 be modified to download log4j 2.17.0?
I see form another post that SoapUI OS 5.7.0 is being developed, and will include Log4J 2.17.0. This issue can be closed
4 years ago Place SoapUI Open Source Questions
1.7KViews
1like
3Comments
Re: Will SoapUI 5.6.1 be modified to download log4j 2.17.0?
My understanding is that 2.16.0 resolved the critical vulnerability that was introduced by 2.14, but - since then - vulnerabilities were discovered in 2.16.0, and one of these has been classified as critical. The known vulnerabilities that exist in 2.16.0 are mediated by 2.17.0. So, our organization only considers 2.17.0 an acceptable remediation.
4 years ago Place SoapUI Open Source Questions
1.6KViews
0likes
4Comments
Will SoapUI 5.6.1 be modified to download log4j 2.17.0?
It seems to download 2.16.0 now, which is not acceptable to our security team.
Solved
4 years ago Place SoapUI Open Source Questions
1.7KViews
0likes
7Comments