Cheryl, We offer a free program to scan USS for log4j.jar, log4j-core-2*.jar and to scan other JAR files for these includes. Contact me if you want a copy.
>From feedback we got from people that ran it, there are many other vendor products that make use of it. SAS is one of them. Best, ITschak *| **Itschak Mugzach | Director | SecuriTeam Software **|** IronSphere Platform* *|* *Information Security Continuous Monitoring for Z/OS, zLinux and IBM I **| * *|* *Email**: [email protected] **|* *Mob**: +972 522 986404 **|* *Skype**: ItschakMugzach **|* *Web**: www.Securiteam.co.il **|* On Tue, Dec 14, 2021 at 4:29 PM Cheryl Watson <[email protected]> wrote: > Hi s1m0n, > > Thanks so much! > > Cheryl > > -----Original Message----- > From: IBM Mainframe Discussion List <[email protected]> On Behalf > Of Filip Palian > Sent: Tuesday, December 14, 2021 12:26 AM > To: [email protected] > Subject: Re: New Java vulnerability > > wt., 14 gru 2021 o 16:23 Cheryl Watson <[email protected]> > napisaĆ(a): > > > > > Does IBM have anything to say about this? I assume it's on their > > security portal. > > > > > https://www.ibm.com/blogs/psirt/an-update-on-the-apache-log4j-cve-2021-44228-vulnerability/ > > > Cheers, > s1m0n > > ---------------------------------------------------------------------- > For IBM-MAIN subscribe / signoff / archive access instructions, send email > to [email protected] with the message: INFO IBM-MAIN > > ---------------------------------------------------------------------- > For IBM-MAIN subscribe / signoff / archive access instructions, > send email to [email protected] with the message: INFO IBM-MAIN > ---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to [email protected] with the message: INFO IBM-MAIN
