Skip to:

  1. Skip to Jira Navigation
  2. Skip to Side Navigation
  3. Skip to Main Content

Upgrade Apache POI to 5.2.0

Fix versions

Priority

Description

Apache POI 5.1.0 shipped log4j-api 2.17.0. It seems only log4j-core, which we don’t use, would be affected by CVE-2021-44832, but, out of precaution, let’s upgrade Apache POI to 5.2.0 (for log4j-api 2.17.1).

https://nvd.nist.gov/vuln/detail/CVE-2021-44832

Activity

Show:
Resolved

Details

Assignee

Reporter

Requirement Yogi

Created January 25, 2022 at 4:42 PM
Updated February 20, 2022 at 12:41 PM
Resolved January 25, 2022 at 5:27 PM
Configure