[AMQ-8431] Log4j old version in use - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Bug
Status: Resolved
Priority: Critical
Resolution: Invalid
Affects Version/s: 5.16.3
Fix Version/s: None
Component/s: AMQP
Labels:
- log4jVulnerabilty
- production

Flags:

Important
External issue ID:
https://logging.apache.org/log4j/2.x/security.html

Description

Hi,

with the declaration of log4j security vulnerability, I see that the latest verison of ActiveMqconnectionFactory still uses the old log4j packagae. please have this mitigatedd. I am in urgent need of the fixed version of ActiveMq.

Thanks

Maloy

Attachments

Activity

People

Assignee:: Unassigned

Reporter:: MALOY KUMAR BAIN

Votes:: 0 Vote for this issue

Watchers:: 4 Start watching this issue

Dates

Created:: 13/Dec/21 12:41

Updated:: 16/Dec/21 18:05

Resolved:: 16/Dec/21 12:43