springboot 解决log4j2漏洞

1、通过pom依赖管理进行指定最新版本


<dependencyManagement>
    <dependencies>
        <dependency>
            <groupId>org.apache.logging.log4j</groupId>
            <artifactId>log4j-api</artifactId>
            <version>2.15.0</version>
        </dependency>
        <dependency>
            <groupId>org.apache.logging.log4j</groupId>
            <artifactId>log4j-slf4j-impl</artifactId>
            <version>2.15.0</version>
        </dependency>
        <dependency>
            <groupId>org.apache.logging.log4j</groupId>
            <artifactId>log4j-core</artifactId>
            <version>2.15.0</version>
        </dependency>
        <dependency>
            <groupId>org.apache.logging.log4j</groupId>
            <artifactId>log4j-jul</artifactId>
            <version>2.15.0</version>
        </dependency>
    </dependencies>
</dependencyManagement>

2、配置直接指定log4j2的版本

<properties>
    <log4j2.version>2.15.0</log4j2.version>
</properties>

posted @ 2021-12-13 14:19 夜与星辰阅读(2521) 评论(0) 编辑收藏举报

会员力量，点亮园子希望

刷新页面返回顶部

追梦少年

springboot 解决log4j2漏洞

公告