> > The tag is rel/2.17.1 as usual. Download page is linked in the linked > announcement email > of the release.
<snip/> > >> Apache Log4j2 versions 2.0-beta7 through 2.17.0 (excluding security fix > >> releases 2.3.2 > and > >> 2.12.4) are vulnerable to a remote code execution (RCE) attack where an > >> attacker with > > > > I do not see the (git) tag or download on the site. Am I missing something? 2.3.2? * 1de6ce914 2021-12-28 (github-apache/log4j-2.3.x, apache/log4j-2.3.x) Git ignore more Eclipse files and folders. garydgreg...@gmail.com * 3c62f0bea 2021-12-27 [LOG4J2-2819] Add SSL/TLS hostname verify option boa...@gmail.com * 02a4bd426 2021-12-23 [LOG4J2-3276] fix more broken .zip.asc links on download page rpo...@apache.org * 9465fdd11 2021-12-23 [LOG4J2-3276] fix broken .zip.asc links on download page rpo...@apache.org * e305185e3 2021-12-23 [DOC] Fix download page: MD5 links should be SHA512 links rpo...@apache.org * a8830d9ff 2021-12-21 [DOC] Fix log4j-2.3.x About page incorrect security.html anchor links rpo...@apache.org * aecbdec42 2021-12-20 [maven-release-plugin] prepare for next development iteration rgo...@apache.org * 38513a7d5 2021-12-20 (tag: rel/2.3.1, tag: log4j-2.3.1-rc1) [maven-release-plugin] prepare release log4j-2.3.1-rc1 rgo...@apache.org 2.12.4? | | * b3879958c 2021-12-27 (github-apache/log4j-2.12, apache/log4j-2.12) Refactor to reuse existing code. garydgreg...@gmail.com | | * 475d4905d 2021-12-28 Only disable CassandraAppenderIT on aarch64, not all the time. garydgreg...@gmail.com | | * 28789ab37 2021-12-23 [LOG4J2-3275] fix download page: MD5 links should be SHA512 rpo...@apache.org | | * 703741e49 2021-12-23 [LOG4J2-3275] update link labels to use `Log4jReleaseVersionJava6` instead of hard-coded string rpo...@apache.org | | * 9be5f2e57 2021-12-23 [LOG4J2-3275] add Log4jReleaseVersionJava6 property to POM rpo...@apache.org | | * ea0c25f45 2021-12-21 [DOC] Update 2.12.x Download page: fix links to 2.3.1 rpo...@apache.org | | * 02e820b27 2021-12-21 [DOC] Simplify 2.12.x About page rpo...@apache.org | | * 07eb59620 2021-12-21 [DOC] Fix link label: should be sha512 not sha1 rpo...@apache.org | | * 31943d004 2021-12-21 [DOC] Fix appenders page typo: replace reference to 2.3.1 with 2.12.3 rpo...@apache.org | | * c8be9d6d3 2021-12-21 [TEST] make tests OS-neutral rpo...@apache.org | | * c120260ee 2021-12-20 Remove extra tag rgo...@apache.org | | * 8e9f17a24 2021-12-20 [maven-release-plugin] prepare for next development iteration rgo...@apache.org | | * 2b9359b23 2021-12-20 (tag: rel/2.12.3, tag: log4j-2.12.3-rc1) [maven-release-plugin] prepare release log4j-2.12.3-rc1 rgo...@apache.org -Jason -- Jason Pyeron | Architect Contractor | PD Inc | Certified SBA 8(a) 10 w 24th St | Certified SBA HUBZone Baltimore, MD | CAGE Code: 1WVR6 .mil: jason.j.pyeron....@mail.mil .com: jpye...@pdinc.us tel : 202-741-9397
