[jira] [Updated] (LOG4J2-3265) CVE-2021-45105 fix for Java 7

Volkan Yazici (Jira) Fri, 24 Dec 2021 07:01:31 -0800


     [ 
https://issues.apache.org/jira/browse/LOG4J2-3265?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]


Volkan Yazici updated LOG4J2-3265:
----------------------------------
    Fix Version/s: 2.12.3

> CVE-2021-45105 fix for Java 7
> -----------------------------
>
>                 Key: LOG4J2-3265
>                 URL: https://issues.apache.org/jira/browse/LOG4J2-3265
>             Project: Log4j 2
>          Issue Type: Bug
>            Reporter: Gobi
>            Priority: Major
>             Fix For: 2.12.3
>
>
> As per the NIST website [https://nvd.nist.gov/vuln/detail/CVE-2021-45105] it 
> says this CVE fixed in log4j 2.12.3 but I could notice the download page 
> [https://logging.apache.org/log4j/log4j-2.12.2/download.html] it says 
> "2.12.2" was the last release for Java7 and no more support for Java7 and 
> Java6
> Are you planning to release 2.12.3 or we should upgrade Java8 and apply log4j 
> 2.17?
>  



--
This message was sent by Atlassian Jira
(v8.20.1#820001)

[jira] [Updated] (LOG4J2-3265) CVE-2021-45105 fix for Java 7

Reply via email to