Updated slf4j packages are available for Oracle Linux 7
Oracle Linux Security Advisory ELSA-2018-0592Slf4j Security Update for Oracle Linux 7
http://linux.oracle.com/errata/ELSA-2018-0592.html
The following updated rpms for Oracle Linux 7 have been uploaded to the
Unbreakable Linux Network:
x86_64:
slf4j-1.7.4-4.el7_4.noarch.rpm
slf4j-javadoc-1.7.4-4.el7_4.noarch.rpm
slf4j-manual-1.7.4-4.el7_4.noarch.rpm
SRPMS:
http://oss.oracle.com/ol7/SRPMS-updates/slf4j-1.7.4-4.el7_4.src.rpm
Description of changes:
[0:1.7.4-4]
- Disallow EventData deserialization by default (CVE-2018-8088)