Uploaded image for project: 'Solr'
  1. Solr
  2. SOLR-15847

Upgrade log4j -> 2.15.0

    XMLWordPrintableJSON

Details

    • Improvement
    • Status: Resolved
    • Critical
    • Resolution: Duplicate
    • None
    • None
    • None
    • None

    Description

      Apache Releases Log4j Version 2.15.0 to Address Critical RCE Vulnerability Under Exploitation, see more here:

       

      https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/apache-releases-log4j-version-2150-address-critical-rce

      This Jira task is very similar to: https://issues.apache.org/jira/browse/SOLR-15609

      We would like to have the fix as soon as possible to prevent vulnerabilities. 

      Attachments

        Issue Links

          Activity

            People

              Unassigned Unassigned
              rkagan Roman Kagan
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: