[jira] [Created] (TIKA-3638) Log4J vulnerability mitigation by upgrading to latest

Subhajit Das (Jira) Mon, 03 Jan 2022 22:34:04 -0800

Subhajit Das created TIKA-3638:
----------------------------------

             Summary: Log4J vulnerability mitigation by upgrading to latest
                 Key: TIKA-3638
                 URL: https://issues.apache.org/jira/browse/TIKA-3638
             Project: Tika
          Issue Type: Bug
    Affects Versions: 1.28
            Reporter: Subhajit Das



Noticeable Vulnerability for log4j is still persistent in log4j 2.17.0.

Upgrading to 2.17.1 (and any latest that may come up before release).

 

Ref:

[https://mvnrepository.com/artifact/org.apache.logging.log4j/log4j-core/2.17.0]

[https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-44832]

https://issues.apache.org/jira/browse/LOG4J2-3293



--
This message was sent by Atlassian Jira
(v8.20.1#820001)

[jira] [Created] (TIKA-3638) Log4J vulnerability mitigation by upgrading to latest

Reply via email to