Uploaded image for project: 'Solr'
  1. Solr
  2. SOLR-15900

Upgrade log4j to 2.17.1

    XMLWordPrintableJSON

Details

    • Task
    • Status: Resolved
    • Critical
    • Resolution: Duplicate
    • 8.11.1
    • None
    • logging
    • None

    Description

      We should update to Log4j 2.17.1 to address CVE-2021-44832: Apache Log4j2 vulnerable to RCE via JDBC Appender when attacker controls configuration.

      Attachments

        Issue Links

          duplicates

          Bug - A problem which impairs or prevents the functions of the product. SOLR-15871 Update Log4J2 version to 2.17.1

          • Major - Major loss of function.
          • Closed

          Task - A task that needs to be done. SOLR-15889 Upgrade to Log4j 2.17.1

          • Major - Major loss of function.
          • Resolved

          Activity

            People

              Unassigned Unassigned
              rahulzsc Rahul Verma
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: