This is an automated email from the ASF dual-hosted git repository.
git-site-role pushed a commit to branch asf-site
in repository https://gitbox.apache.org/repos/asf/activemq-website.git
The following commit(s) were added to refs/heads/asf-site by this push:
new 3594c7d Automatic Site Publish by Buildbot
3594c7d is described below
commit 3594c7d41a552a7bc50e892d501cdf1315908da1
Author: buildbot <[email protected]>
AuthorDate: Tue Dec 14 21:02:35 2021 +0000
Automatic Site Publish by Buildbot
---
output/index.html | 18 ++--
output/news/{index.html => cve-2021-44228.html} | 107 ++----------------------
output/news/index.html | 5 ++
3 files changed, 19 insertions(+), 111 deletions(-)
diff --git a/output/index.html b/output/index.html
index 783b132..f2e2142 100644
--- a/output/index.html
+++ b/output/index.html
@@ -122,13 +122,13 @@
<div class="card card-grey-small">
<div class="card-body ml-0 p-2">
- <h6 class="card-title"><a class="text-blue"
href="/components/nms/providers/amqp/downloads/nms-amqp-02-00-00-release">Apache.NMS.AMQP
2.0.0 Release</a></h6>
+ <h6 class="card-title"><a class="text-blue"
href="/news/cve-2021-44228">Update on CVE-2021-44228</a></h6>
- NMS 2.0 implementation.<a style="display: unset;" class="nav-link pl-0
ml-0"
href="/components/nms/providers/amqp/downloads/nms-amqp-02-00-00-release">...more</a>
+ <a style="display: unset;" class="nav-link pl-0 ml-0"
href="/news/cve-2021-44228">...more</a>
- <p class="small text-muted text-right font-italic mb-0">Oct 27th, 2021</p>
+ <p class="small text-muted text-right font-italic mb-0">Dec 14th, 2021</p>
</div>
</div>
@@ -136,13 +136,13 @@
<div class="card card-grey-small">
<div class="card-body ml-0 p-2">
- <h6 class="card-title"><a class="text-blue"
href="/components/artemis/download/">ActiveMQ Artemis 2.19.0</a></h6>
+ <h6 class="card-title"><a class="text-blue"
href="/components/nms/providers/amqp/downloads/nms-amqp-02-00-00-release">Apache.NMS.AMQP
2.0.0 Release</a></h6>
- Includes 3 new features, 36 bug fixes, 8 dependency upgrades, and 18
enhancements.<a style="display: unset;" class="nav-link pl-0 ml-0"
href="/components/artemis/download/">...more</a>
+ NMS 2.0 implementation.<a style="display: unset;" class="nav-link pl-0
ml-0"
href="/components/nms/providers/amqp/downloads/nms-amqp-02-00-00-release">...more</a>
- <p class="small text-muted text-right font-italic mb-0">Oct 18th, 2021</p>
+ <p class="small text-muted text-right font-italic mb-0">Oct 27th, 2021</p>
</div>
</div>
@@ -150,13 +150,13 @@
<div class="card card-grey-small">
<div class="card-body ml-0 p-2">
- <h6 class="card-title"><a class="text-blue"
href="/news/news-feed">ActiveMQ News Feed</a></h6>
+ <h6 class="card-title"><a class="text-blue"
href="/components/artemis/download/">ActiveMQ Artemis 2.19.0</a></h6>
- Checkout the new news feed!<a style="display: unset;" class="nav-link pl-0
ml-0" href="/news/news-feed">...more</a>
+ Includes 3 new features, 36 bug fixes, 8 dependency upgrades, and 18
enhancements.<a style="display: unset;" class="nav-link pl-0 ml-0"
href="/components/artemis/download/">...more</a>
- <p class="small text-muted text-right font-italic mb-0">Aug 30th, 2021</p>
+ <p class="small text-muted text-right font-italic mb-0">Oct 18th, 2021</p>
</div>
</div>
diff --git a/output/news/index.html b/output/news/cve-2021-44228.html
similarity index 65%
copy from output/news/index.html
copy to output/news/cve-2021-44228.html
index f4b2e8f..4bbe510 100644
--- a/output/news/index.html
+++ b/output/news/cve-2021-44228.html
@@ -85,116 +85,19 @@
<div class="content">
<div class="page-title-main">
<div class="container">
- <h1>News</h1>
+ <h1>Update on CVE-2021-44228</h1>
</div>
</div>
<div class="container" >
<div class="row" style="margin-top: 30px">
<div class="col-12 main">
- <p><a href="/">Home</a> > <a href="/news">News</a></p>
+ <p><a href="/news">News</a> > <a href="/news/cve-2021-44228">Update
on CVE-2021-44228</a></p>
-<h3 id="apachenmsamqp-200-release">Apache.NMS.AMQP 2.0.0 Release</h3>
-<p><span class="text-secondary"> Oct 27th, 2021</span></p>
+<p><a
href="https://nvd.nist.gov/vuln/detail/CVE-2021-44228";>CVE-2021-44228</a> was
recently announced and it has caused quite a bit of traffic on the mailing
lists and in Jira from users curious about its impact on both ActiveMQ
“Classic” and Artemis. In short, <strong>CVE-2021-44228 has no impact on any
ActiveMQ broker</strong> because no ActiveMQ broker uses any version of Log4j2.
To reiterate, <strong>no action is required to mitigate
CVE-2021-44228</strong>.</p>
-<p>NMS 2.0 implementation.</p>
-
-<p><a
href="/components/nms/providers/amqp/downloads/nms-amqp-02-00-00-release">Read
More</a></p>
-
-<h3 id="activemq-artemis-2190">ActiveMQ Artemis 2.19.0</h3>
-<p><span class="text-secondary"> Oct 18th, 2021</span></p>
-
-<p>Includes 3 new features, 36 bug fixes, 8 dependency upgrades, and 18
enhancements.</p>
-
-<p><a href="/components/artemis/download/">Read More</a></p>
-
-<h3 id="activemq-news-feed">ActiveMQ News Feed</h3>
-<p><span class="text-secondary"> Aug 30th, 2021</span></p>
-
-<p>Checkout the new news feed!</p>
-
-<p><a href="/news/news-feed">Read More</a></p>
-
-<h3 id="activemq-5163-release">ActiveMQ 5.16.3 Release</h3>
-<p><span class="text-secondary"> Aug 17th, 2021</span></p>
-
-<p>Fully supports JDK 9+ at runtime and includes 10 bug fixes, 15 dependency
upgrades, and 3 enhancements.</p>
-
-<p><a href="/activemq-5016003-release">Read More</a></p>
-
-<h3 id="apachenmsamqp-182-release">Apache.NMS.AMQP 1.8.2 Release</h3>
-<p><span class="text-secondary"> Aug 16th, 2021</span></p>
-
-<p>Bug fix release around send timeout.</p>
-
-<p><a
href="/components/nms/providers/amqp/downloads/nms-amqp-01-08-02-release">Read
More</a></p>
-
-<h3 id="activemq-artemis-2180">ActiveMQ Artemis 2.18.0</h3>
-<p><span class="text-secondary"> Aug 12th, 2021</span></p>
-
-<p>Includes 12 new features, 79 bug fixes, 19 dependency upgrades, and 46
enhancements.</p>
-
-<p><a href="/components/artemis/download/">Read More</a></p>
-
-<h3 id="activemq-5162-release">ActiveMQ 5.16.2 Release</h3>
-<p><span class="text-secondary"> Apr 28th, 2021</span></p>
-
-<p>Apache ActiveMQ 5.16.2 was released on Apr 28th, 2021. It fully supports
JDK 9+ at runtime and includes several resolved issues and bug fixes.</p>
-
-<p><a href="/activemq-5016002-release">Read More</a></p>
-
-<h3 id="activemq-51515-release">ActiveMQ 5.15.15 Release</h3>
-<p><span class="text-secondary"> Apr 28th, 2021</span></p>
-
-<p>Apache ActiveMQ 5.15.15 was released on Apr 28th, 2021 and includes several
resolved issues and bug fixes.
-<br /><br /><strong>NOTE:</strong> This is the last planned 5.15.x release.
Users should upgrade to the current 5.16.x stream for ongoing releases.</p>
-
-<p><a href="/activemq-5015015-release">Read More</a></p>
-
-<h3 id="apachenmsamqp-181-release">Apache.NMS.AMQP 1.8.1 Release</h3>
-<p><span class="text-secondary"> Apr 4th, 2021</span></p>
-
-<p><a
href="/components/nms/providers/amqp/downloads/nms-amqp-01-08-01-release">Read
More</a></p>
-
-<h3 id="apachenmsactivemq-v180">Apache.NMS.ActiveMQ v1.8.0</h3>
-<p><span class="text-secondary"> Mar 1st, 2021</span></p>
-
-<p><a
href="/components/nms/providers/activemq/downloads/apachenmsactivemq-v180">Read
More</a></p>
-
-<h3 id="activemq-artemis-2170">ActiveMQ Artemis 2.17.0</h3>
-<p><span class="text-secondary"> Feb 16th, 2021</span></p>
-
-<p><a href="/components/artemis/download/">Read More</a></p>
-
-<h3 id="activemq-5161-release">ActiveMQ 5.16.1 Release</h3>
-<p><span class="text-secondary"> Jan 20th, 2021</span></p>
-
-<p><a href="/activemq-5016001-release">Read More</a></p>
-
-<h3 id="activemq-51514-release">ActiveMQ 5.15.14 Release</h3>
-<p><span class="text-secondary"> Dec 9th, 2020</span></p>
-
-<p><a href="/activemq-5015014-release">Read More</a></p>
-
-<h3 id="activemq-artemis-2160">ActiveMQ Artemis 2.16.0</h3>
-<p><span class="text-secondary"> Nov 10th, 2020</span></p>
-
-<p><a href="/components/artemis/download/">Read More</a></p>
-
-<h3 id="activemq-artemis-2150">ActiveMQ Artemis 2.15.0</h3>
-<p><span class="text-secondary"> Aug 31st, 2020</span></p>
-
-<p><a href="/components/artemis/download/">Read More</a></p>
-
-<h3 id="activemq-artemis-2140">ActiveMQ Artemis 2.14.0</h3>
-<p><span class="text-secondary"> Jul 20th, 2020</span></p>
-
-<p><a href="/components/artemis/download/">Read More</a></p>
-
-<h3 id="apachenmsamqp-180-release">Apache.NMS.AMQP 1.8.0 Release</h3>
-<p><span class="text-secondary"> Nov 4th, 2019</span></p>
-
-<p><a
href="/components/nms/providers/amqp/downloads/nms-amqp-01-08-00-release">Read
More</a></p>
+<p>ActiveMQ “Classic” <em>does</em> use Log4j for logging, but the latest
versions (i.e. <a
href="https://activemq.apache.org/activemq-5015015-release";>5.15.15</a> and <a
href="https://activemq.apache.org/activemq-5016003-release";>5.16.3</a>) use
Log4j 1.2.17 which is not impacted by CVE-2021-44228. This version of Log4j has
been used since 5.7.0. The upcoming ActiveMQ <a
href="https://github.com/apache/activemq/tree/main";>5.17.0</a> <a
href="https://github.com/apache/activemq/pull/662";> [...]
+<p>ActiveMQ Artemis <em>does not</em> use Log4j for logging. However, Log4j
1.2.17 is included in the Hawtio-based web console application archive (i.e.
<code class="language-plaintext
highlighter-rouge">web/console.war/WEB-INF/lib</code>). Although this version
of Log4j is not impacted by CVE-2021-44228 future versions of Artemis will be
updated so that the Log4j jar is no longer included in the web console
application archive.</p>
</div>
</div>
diff --git a/output/news/index.html b/output/news/index.html
index f4b2e8f..315fee5 100644
--- a/output/news/index.html
+++ b/output/news/index.html
@@ -93,6 +93,11 @@
<div class="col-12 main">
<p><a href="/">Home</a> > <a href="/news">News</a></p>
+<h3 id="update-on-cve-2021-44228">Update on CVE-2021-44228</h3>
+<p><span class="text-secondary"> Dec 14th, 2021</span></p>
+
+<p><a href="/news/cve-2021-44228">Read More</a></p>
+
<h3 id="apachenmsamqp-200-release">Apache.NMS.AMQP 2.0.0 Release</h3>
<p><span class="text-secondary"> Oct 27th, 2021</span></p>
