I see in GitHub that the mitigation for apache-solr8 has already been added (together with the 0.8.11 update). Great work!
Gerben Wierda (LinkedIn <https://www.linkedin.com/in/gerbenwierda>) R&A IT Strategy <https://ea.rna.nl/> (main site) Book: Chess and the Art of Enterprise Architecture <https://ea.rna.nl/the-book/> Book: Mastering ArchiMate <https://ea.rna.nl/the-book-edition-iii/> > On 14 Dec 2021, at 15:36, Gerben Wierda via macports-users > <[email protected]> wrote: > > It is super scary. > > Apache solr8 is vulnerable. There is no 0.8.11 yet. Mitigation required: > > • (Linux/MacOS) Edit your solr.in.sh file to include: > SOLR_OPTS="$SOLR_OPTS -Dlog4j2.formatMsgNoLookups=true" > > > Gerben Wierda (LinkedIn <https://www.linkedin.com/in/gerbenwierda>) > R&A IT Strategy <https://ea.rna.nl/> (main site) > Book: Chess and the Art of Enterprise Architecture > <https://ea.rna.nl/the-book/> > Book: Mastering ArchiMate <https://ea.rna.nl/the-book-edition-iii/> > >> On 11 Dec 2021, at 18:24, Richard L. Hamilton <[email protected] >> <mailto:[email protected]>> wrote: >> >> CVE-2021-44228 sounds kinda scary! >> >> -- >> eMail: mailto:[email protected] >> <mailto:[email protected]> >> >> >> >> >
