Can anyone help me resolve this?
2021-12-12 09:11:49,787 ERROR
[org.springframework.boot.web.servlet.support.ErrorPageFilter] -
java.lang.NoClassDefFoundError: org/bouncycastle/asn1/DERObjectIdentifier
at java.lang.Class.forName0(Native Method) ~[?:?]
at
Thanks for clarification.
Sent while mobile
Von: 'Richard Frovarp' via CAS Community
Gesendet: Sunday, December 12, 2021 6:10:15 PM
An: cas-user@apereo.org
Betreff: Re: [cas-user] log4j2 vulnerability
Newer version of the JDK are still affected. The newer JDK
Newer version of the JDK are still affected. The newer JDK versions stop JNDI
from running remote code, it doesn't stop JNDI lookup. An attacker can still
exfil data through the DNS lookup. Also, there are other paths to exploit with
this attack. It was first found via JNDI LDAP to execute
I have been using the cas interrupt REST feature for a while now, utilizing
a nodejs api that was created to take in these interrupt requests and make
decisions about what to do from there.
I have this interesting thing that happens where the interrupt always gets
called twice, and without