Re: Any ports use log4j 2?

Gerben Wierda via macports-users Tue, 14 Dec 2021 06:36:41 -0800

It is super scary.

Apache solr8 is vulnerable. There is no 0.8.11 yet. Mitigation required:


        • (Linux/MacOS) Edit your solr.in.sh file to include: 
SOLR_OPTS="$SOLR_OPTS -Dlog4j2.formatMsgNoLookups=true"


Gerben Wierda (LinkedIn <https://www.linkedin.com/in/gerbenwierda>)
R&A IT Strategy <https://ea.rna.nl/> (main site)
Book: Chess and the Art of Enterprise Architecture <https://ea.rna.nl/the-book/>
Book: Mastering ArchiMate <https://ea.rna.nl/the-book-edition-iii/>

> On 11 Dec 2021, at 18:24, Richard L. Hamilton <rlha...@smart.net> wrote:
> 
> CVE-2021-44228 sounds kinda scary!
> 
> -- 
> eMail:                                mailto:rlha...@smart.net 
> <mailto:rlha...@smart.net>
> 
> 
> 
>

Re: Any ports use log4j 2?

Reply via email to