Back to library list
ch.qos.logback__logback-classic
Column Insecure: Icon 
indicates the version is insecure, otherwise 
Column CryptoMisuse: Icon indicates the version has cryptographic API misuse, otherwise
indicates the version is insecure, otherwise
Column CryptoMisuse: Icon
indicates the version has cryptographic API misuse, otherwise
| Version | Insecure | CryptoMisuse | Rule name | Method | Statement | Details |
|---|---|---|---|---|---|---|
| 0.2.5 |
|
|
||||
| 0.3 |
|
|
||||
| 0.5 |
|
|
||||
| 0.6 |
|
|
||||
| 0.7 |
|
|
||||
| 0.7.1 |
|
|
||||
| 0.8 |
|
|
||||
| 0.8.1 |
|
|
||||
| 0.9 |
|
|
||||
| 0.9.1 |
|
|
||||
| 0.9.2 |
|
|
||||
| 0.9.3 |
|
|
||||
| 0.9.4 |
|
|
||||
| 0.9.5 |
|
|
||||
| 0.9.6 |
|
|
||||
| 0.9.7 |
|
|
||||
| 0.9.8 |
|
|
||||
| 0.9.9 |
|
|
||||
| 0.9.10 |
|
|
||||
| 0.9.11 |
|
|
||||
| 0.9.12 |
|
|
||||
| 0.9.13 |
|
|
||||
| 0.9.14 |
|
|
||||
| 0.9.15 |
|
|
||||
| 0.9.16 |
|
|
||||
| 0.9.17 |
|
|
||||
| 0.9.18 |
|
|
||||
| 0.9.19 |
|
|
||||
| 0.9.20 |
|
|
||||
| 0.9.21 |
|
|
||||
| 0.9.22 |
|
|
||||
| 0.9.23 |
|
|
||||
| 0.9.24 |
|
|
||||
| 0.9.25 |
|
|
||||
| 0.9.26 |
|
|
||||
| 0.9.27 |
|
|
||||
| 0.9.28 |
|
|
||||
| 0.9.29 |
|
|
||||
| 0.9.30 |
|
|
||||
| 1.0.0 |
|
|
||||
| 1.0.1 |
|
|
||||
| 1.0.2 |
|
|
||||
| 1.0.3 |
|
|
||||
| 1.0.4 |
|
|
||||
| 1.0.5 |
|
|
||||
| 1.0.6 |
|
|
||||
| 1.0.7 |
|
|
||||
| 1.0.8 |
|
|
||||
| 1.0.9 |
|
|
||||
| 1.0.10 |
|
|
||||
| 1.0.11 |
|
|
||||
| 1.0.12 |
|
|
SSLContext | ch.qos.logback.classic.net.SimpleSSLSocketServer.<init>(Lch/qos/logback/classic/LoggerContext;I)V | $r2 = staticinvoke <javax.net.ssl.SSLContext: javax.net.ssl.SSLContext getDefault()>() | Detected call to forbidden method javax.net.ssl.SSLContext getDefault() of class javax.net.ssl.SSLContext. Instead, call method <javax.net.ssl.SSLContext: javax.net.ssl.SSLContext getInstance(java.lang.String,java.lang.String)>, <javax.net.ssl.SSLContext: javax.net.ssl.SSLContext getInstance(java.lang.String,java.security.Provider)>, <javax.net.ssl.SSLContext: javax.net.ssl.SSLContext getInstance(java.lang.String)>. |
| 1.0.13 |
|
|
SSLContext | ch.qos.logback.classic.net.SimpleSSLSocketServer.<init>(Lch/qos/logback/classic/LoggerContext;I)V | $r2 = staticinvoke <javax.net.ssl.SSLContext: javax.net.ssl.SSLContext getDefault()>() | Detected call to forbidden method javax.net.ssl.SSLContext getDefault() of class javax.net.ssl.SSLContext. Instead, call method <javax.net.ssl.SSLContext: javax.net.ssl.SSLContext getInstance(java.lang.String,java.lang.String)>, <javax.net.ssl.SSLContext: javax.net.ssl.SSLContext getInstance(java.lang.String,java.security.Provider)>, <javax.net.ssl.SSLContext: javax.net.ssl.SSLContext getInstance(java.lang.String)>. |
| 1.1.0 |
|
|
SSLContext | ch.qos.logback.classic.net.SimpleSSLSocketServer.<init>(Lch/qos/logback/classic/LoggerContext;I)V | $r2 = staticinvoke <javax.net.ssl.SSLContext: javax.net.ssl.SSLContext getDefault()>() | Detected call to forbidden method javax.net.ssl.SSLContext getDefault() of class javax.net.ssl.SSLContext. Instead, call method <javax.net.ssl.SSLContext: javax.net.ssl.SSLContext getInstance(java.lang.String)>, <javax.net.ssl.SSLContext: javax.net.ssl.SSLContext getInstance(java.lang.String,java.security.Provider)>, <javax.net.ssl.SSLContext: javax.net.ssl.SSLContext getInstance(java.lang.String,java.lang.String)>. |
| 1.1.1 |
|
|
SSLContext | ch.qos.logback.classic.net.SimpleSSLSocketServer.<init>(Lch/qos/logback/classic/LoggerContext;I)V | $r2 = staticinvoke <javax.net.ssl.SSLContext: javax.net.ssl.SSLContext getDefault()>() | Detected call to forbidden method javax.net.ssl.SSLContext getDefault() of class javax.net.ssl.SSLContext. Instead, call method <javax.net.ssl.SSLContext: javax.net.ssl.SSLContext getInstance(java.lang.String,java.lang.String)>, <javax.net.ssl.SSLContext: javax.net.ssl.SSLContext getInstance(java.lang.String,java.security.Provider)>, <javax.net.ssl.SSLContext: javax.net.ssl.SSLContext getInstance(java.lang.String)>. |
| 1.1.2 |
|
|
SSLContext | ch.qos.logback.classic.net.SimpleSSLSocketServer.<init>(Lch/qos/logback/classic/LoggerContext;I)V | $r2 = staticinvoke <javax.net.ssl.SSLContext: javax.net.ssl.SSLContext getDefault()>() | Detected call to forbidden method javax.net.ssl.SSLContext getDefault() of class javax.net.ssl.SSLContext. Instead, call method <javax.net.ssl.SSLContext: javax.net.ssl.SSLContext getInstance(java.lang.String)>, <javax.net.ssl.SSLContext: javax.net.ssl.SSLContext getInstance(java.lang.String,java.security.Provider)>, <javax.net.ssl.SSLContext: javax.net.ssl.SSLContext getInstance(java.lang.String,java.lang.String)>. |
| 1.1.3 |
|
|
SSLContext | ch.qos.logback.classic.net.SimpleSSLSocketServer.<init>(Lch/qos/logback/classic/LoggerContext;I)V | $r2 = staticinvoke <javax.net.ssl.SSLContext: javax.net.ssl.SSLContext getDefault()>() | Detected call to forbidden method javax.net.ssl.SSLContext getDefault() of class javax.net.ssl.SSLContext. Instead, call method <javax.net.ssl.SSLContext: javax.net.ssl.SSLContext getInstance(java.lang.String,java.lang.String)>, <javax.net.ssl.SSLContext: javax.net.ssl.SSLContext getInstance(java.lang.String,java.security.Provider)>, <javax.net.ssl.SSLContext: javax.net.ssl.SSLContext getInstance(java.lang.String)>. |
| 1.1.4 |
|
|
SSLContext | ch.qos.logback.classic.net.SimpleSSLSocketServer.<init>(Lch/qos/logback/classic/LoggerContext;I)V | $r2 = staticinvoke <javax.net.ssl.SSLContext: javax.net.ssl.SSLContext getDefault()>() | Detected call to forbidden method javax.net.ssl.SSLContext getDefault() of class javax.net.ssl.SSLContext. Instead, call method <javax.net.ssl.SSLContext: javax.net.ssl.SSLContext getInstance(java.lang.String,java.security.Provider)>, <javax.net.ssl.SSLContext: javax.net.ssl.SSLContext getInstance(java.lang.String)>, <javax.net.ssl.SSLContext: javax.net.ssl.SSLContext getInstance(java.lang.String,java.lang.String)>. |
| 1.1.5 |
|
|
SSLContext | ch.qos.logback.classic.net.SimpleSSLSocketServer.<init>(Lch/qos/logback/classic/LoggerContext;I)V | $r2 = staticinvoke <javax.net.ssl.SSLContext: javax.net.ssl.SSLContext getDefault()>() | Detected call to forbidden method javax.net.ssl.SSLContext getDefault() of class javax.net.ssl.SSLContext. Instead, call method <javax.net.ssl.SSLContext: javax.net.ssl.SSLContext getInstance(java.lang.String)>, <javax.net.ssl.SSLContext: javax.net.ssl.SSLContext getInstance(java.lang.String,java.lang.String)>, <javax.net.ssl.SSLContext: javax.net.ssl.SSLContext getInstance(java.lang.String,java.security.Provider)>. |
| 1.1.6 |
|
|
SSLContext | ch.qos.logback.classic.net.SimpleSSLSocketServer.<init>(Lch/qos/logback/classic/LoggerContext;I)V | $r2 = staticinvoke <javax.net.ssl.SSLContext: javax.net.ssl.SSLContext getDefault()>() | Detected call to forbidden method javax.net.ssl.SSLContext getDefault() of class javax.net.ssl.SSLContext. Instead, call method <javax.net.ssl.SSLContext: javax.net.ssl.SSLContext getInstance(java.lang.String,java.security.Provider)>, <javax.net.ssl.SSLContext: javax.net.ssl.SSLContext getInstance(java.lang.String,java.lang.String)>, <javax.net.ssl.SSLContext: javax.net.ssl.SSLContext getInstance(java.lang.String)>. |
| 1.1.7 |
|
|
SSLContext | ch.qos.logback.classic.net.SimpleSSLSocketServer.<init>(Lch/qos/logback/classic/LoggerContext;I)V | $r2 = staticinvoke <javax.net.ssl.SSLContext: javax.net.ssl.SSLContext getDefault()>() | Detected call to forbidden method javax.net.ssl.SSLContext getDefault() of class javax.net.ssl.SSLContext. Instead, call method <javax.net.ssl.SSLContext: javax.net.ssl.SSLContext getInstance(java.lang.String)>, <javax.net.ssl.SSLContext: javax.net.ssl.SSLContext getInstance(java.lang.String,java.security.Provider)>, <javax.net.ssl.SSLContext: javax.net.ssl.SSLContext getInstance(java.lang.String,java.lang.String)>. |
| 1.1.8 |
|
|
SSLContext | ch.qos.logback.classic.net.SimpleSSLSocketServer.<init>(Lch/qos/logback/classic/LoggerContext;I)V | $r2 = staticinvoke <javax.net.ssl.SSLContext: javax.net.ssl.SSLContext getDefault()>() | Detected call to forbidden method javax.net.ssl.SSLContext getDefault() of class javax.net.ssl.SSLContext. Instead, call method <javax.net.ssl.SSLContext: javax.net.ssl.SSLContext getInstance(java.lang.String,java.lang.String)>, <javax.net.ssl.SSLContext: javax.net.ssl.SSLContext getInstance(java.lang.String)>, <javax.net.ssl.SSLContext: javax.net.ssl.SSLContext getInstance(java.lang.String,java.security.Provider)>. |
| 1.1.9 |
|
|
SSLContext | ch.qos.logback.classic.net.SimpleSSLSocketServer.<init>(Lch/qos/logback/classic/LoggerContext;I)V | $r2 = staticinvoke <javax.net.ssl.SSLContext: javax.net.ssl.SSLContext getDefault()>() | Detected call to forbidden method javax.net.ssl.SSLContext getDefault() of class javax.net.ssl.SSLContext. Instead, call method <javax.net.ssl.SSLContext: javax.net.ssl.SSLContext getInstance(java.lang.String,java.lang.String)>, <javax.net.ssl.SSLContext: javax.net.ssl.SSLContext getInstance(java.lang.String)>, <javax.net.ssl.SSLContext: javax.net.ssl.SSLContext getInstance(java.lang.String,java.security.Provider)>. |
| 1.1.10 |
|
|
SSLContext | ch.qos.logback.classic.net.SimpleSSLSocketServer.<init>(Lch/qos/logback/classic/LoggerContext;I)V | $r2 = staticinvoke <javax.net.ssl.SSLContext: javax.net.ssl.SSLContext getDefault()>() | Detected call to forbidden method javax.net.ssl.SSLContext getDefault() of class javax.net.ssl.SSLContext. Instead, call method <javax.net.ssl.SSLContext: javax.net.ssl.SSLContext getInstance(java.lang.String,java.lang.String)>, <javax.net.ssl.SSLContext: javax.net.ssl.SSLContext getInstance(java.lang.String)>, <javax.net.ssl.SSLContext: javax.net.ssl.SSLContext getInstance(java.lang.String,java.security.Provider)>. |
| 1.1.11 |
|
|
SSLContext | ch.qos.logback.classic.net.SimpleSSLSocketServer.<init>(Lch/qos/logback/classic/LoggerContext;I)V | $r2 = staticinvoke <javax.net.ssl.SSLContext: javax.net.ssl.SSLContext getDefault()>() | Detected call to forbidden method javax.net.ssl.SSLContext getDefault() of class javax.net.ssl.SSLContext. Instead, call method <javax.net.ssl.SSLContext: javax.net.ssl.SSLContext getInstance(java.lang.String,java.lang.String)>, <javax.net.ssl.SSLContext: javax.net.ssl.SSLContext getInstance(java.lang.String,java.security.Provider)>, <javax.net.ssl.SSLContext: javax.net.ssl.SSLContext getInstance(java.lang.String)>. |
| 1.2.0 |
|
|
SSLContext | ch.qos.logback.classic.net.SimpleSSLSocketServer.<init>(Lch/qos/logback/classic/LoggerContext;I)V | $r2 = staticinvoke <javax.net.ssl.SSLContext: javax.net.ssl.SSLContext getDefault()>() | Detected call to forbidden method javax.net.ssl.SSLContext getDefault() of class javax.net.ssl.SSLContext. Instead, call method <javax.net.ssl.SSLContext: javax.net.ssl.SSLContext getInstance(java.lang.String)>, <javax.net.ssl.SSLContext: javax.net.ssl.SSLContext getInstance(java.lang.String,java.lang.String)>, <javax.net.ssl.SSLContext: javax.net.ssl.SSLContext getInstance(java.lang.String,java.security.Provider)>. |
| 1.2.1 |
|
|
SSLContext | ch.qos.logback.classic.net.SimpleSSLSocketServer.<init>(Lch/qos/logback/classic/LoggerContext;I)V | $r2 = staticinvoke <javax.net.ssl.SSLContext: javax.net.ssl.SSLContext getDefault()>() | Detected call to forbidden method javax.net.ssl.SSLContext getDefault() of class javax.net.ssl.SSLContext. Instead, call method <javax.net.ssl.SSLContext: javax.net.ssl.SSLContext getInstance(java.lang.String,java.lang.String)>, <javax.net.ssl.SSLContext: javax.net.ssl.SSLContext getInstance(java.lang.String)>, <javax.net.ssl.SSLContext: javax.net.ssl.SSLContext getInstance(java.lang.String,java.security.Provider)>. |
| 1.2.2 |
|
|
SSLContext | ch.qos.logback.classic.net.SimpleSSLSocketServer.<init>(Lch/qos/logback/classic/LoggerContext;I)V | $r2 = staticinvoke <javax.net.ssl.SSLContext: javax.net.ssl.SSLContext getDefault()>() | Detected call to forbidden method javax.net.ssl.SSLContext getDefault() of class javax.net.ssl.SSLContext. Instead, call method <javax.net.ssl.SSLContext: javax.net.ssl.SSLContext getInstance(java.lang.String)>, <javax.net.ssl.SSLContext: javax.net.ssl.SSLContext getInstance(java.lang.String,java.lang.String)>, <javax.net.ssl.SSLContext: javax.net.ssl.SSLContext getInstance(java.lang.String,java.security.Provider)>. |
| 1.2.3 |
|
|
SSLContext | ch.qos.logback.classic.net.SimpleSSLSocketServer.<init>(Lch/qos/logback/classic/LoggerContext;I)V | $r2 = staticinvoke <javax.net.ssl.SSLContext: javax.net.ssl.SSLContext getDefault()>() | Detected call to forbidden method javax.net.ssl.SSLContext getDefault() of class javax.net.ssl.SSLContext. Instead, call method <javax.net.ssl.SSLContext: javax.net.ssl.SSLContext getInstance(java.lang.String,java.security.Provider)>, <javax.net.ssl.SSLContext: javax.net.ssl.SSLContext getInstance(java.lang.String,java.lang.String)>, <javax.net.ssl.SSLContext: javax.net.ssl.SSLContext getInstance(java.lang.String)>. |