Bug 2044257 - Bump snmp4j library version to remove dependency on log4j
Summary: Bump snmp4j library version to remove dependency on log4j
Keywords:
Status: CLOSED ERRATA
Alias: None
Product: Red Hat Enterprise Virtualization Manager
Classification: Red Hat
Component: snmp4j
Version: 4.4.9
Hardware: Unspecified
OS: Unspecified
high
high
Target Milestone: ovirt-4.4.10-1
: ---
Assignee: Martin Perina
QA Contact: Pavol Brilla
URL:
Whiteboard:
Depends On:
Blocks: 2033534 2042344
TreeView+ depends on / blocked
 
Reported: 2022-01-24 10:32 UTC by Martin Perina
Modified: 2022-02-08 16:58 UTC (History)
9 users (show)

Fixed In Version: ovirt-engine-4.4.10.6, snmp4j-3.6.4
Doc Type: Release Note
Doc Text:
In this release, Red Hat Virtualization 4.4.10 requires snmp4j version 3.6.4 or later, which no longer depends on the log4j library.
Clone Of:
Environment:
Last Closed: 2022-02-08 16:57:32 UTC
oVirt Team: Infra
Target Upstream Version:
Embargoed:

Attachments (Terms of Use)


Links
System ID Private Priority Status Summary Last Updated
Red Hat Issue Tracker RHV-44529 0 None None None 2022-01-24 10:40:04 UTC
Red Hat Product Errata RHSA-2022:0475 0 None None None 2022-02-08 16:58:37 UTC
oVirt gerrit 118331 0 master MERGED core: Bump snmp4j to 3.6.4 2022-01-24 21:55:51 UTC
oVirt gerrit 118336 0 ovirt-engine-4.4 MERGED core: Bump snmp4j to 3.6.4 2022-01-25 19:23:07 UTC

Description Martin Perina 2022-01-24 10:32:14 UTC 
The dependency on log4j has been removed from snmp4j library in version 3.0.0:

https://www.snmp4j.org/CHANGES.txt

RHV 4.4 is currently using snmp4j 2.5.3, so we will need to bump to snmp4j >= 3.0.0
Comment 6 errata-xmlrpc 2022-02-08 16:57:32 UTC 
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory (Low: RHV Manager (ovirt-engine) security update [ovirt-4.4.10-1]), and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://access.redhat.com/errata/RHSA-2022:0475
Note You need to log in before you can comment on or make changes to this bug.