Security update for slf4j (important)

2018-06-09T15:10:19
ID OPENSUSE-SU-2018:1625-1
Type suse
Reporter Suse
Modified 2018-06-09T15:10:19

Description

This update for slf4j fixes the following security issue:

  • CVE-2018-8088: Remote attackers could have bypassed intended access restrictions via crafted data. Disallow EventData deserialization by default from now on (bsc#1085970).