Uploaded image for project: 'ManifoldCF'
  1. ManifoldCF
  2. CONNECTORS-1683

Upgrade Log4J 2.17.0

Attach filesAttach ScreenshotVotersWatch issueWatchersCreate sub-taskLinkCloneUpdate Comment AuthorReplace String in CommentUpdate Comment VisibilityDelete Comments
    XMLWordPrintableJSON

Details

    Description

      Dependency Log4j 2 should be upgraded to Log4J 2.16.0, because there is a known RCE Vulnerability in previous Versions: https://www.lunasec.io/docs/blog/log4j-zero-day/

      CVE-2021-44228
      CVE-2021-45046
      CVE-2021-45105

      Attachments

        Activity

          This comment will be Viewable by All Users Viewable by All Users
          Cancel

          People

            schuch Markus Schuch
            schuch Markus Schuch
            Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved:

              Slack

                Issue deployment