[jira] [Closed] (LOG4J2-3245) log4j-core-2.0-beta9.jar CVE-2021-44228 vulnerability

Gary D. Gregory (Jira) Thu, 16 Dec 2021 12:43:16 -0800


     [ 
https://issues.apache.org/jira/browse/LOG4J2-3245?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]


Gary D. Gregory closed LOG4J2-3245.
-----------------------------------
    Fix Version/s: 2.16.0
       Resolution: Fixed

> log4j-core-2.0-beta9.jar CVE-2021-44228 vulnerability 
> ------------------------------------------------------
>
>                 Key: LOG4J2-3245
>                 URL: https://issues.apache.org/jira/browse/LOG4J2-3245
>             Project: Log4j 2
>          Issue Type: Bug
>          Components: Core
>    Affects Versions: 2.0-beta9
>            Reporter: Chaitanya
>            Priority: Major
>             Fix For: 2.16.0
>
>
> log4j-core-2.0-beta9.jar CVE-2021-44228 vulnerability is not resolved by 
> removing *org/apache/logging/log4j/core/lookup/JndiLookup.class* as this 
> version of ** depends on JndiLookup. Request to suggest how to remediate 
> this.{*}{*}{*}{*}



--
This message was sent by Atlassian Jira
(v8.20.1#820001)

[jira] [Closed] (LOG4J2-3245) log4j-core-2.0-beta9.jar CVE-2021-44228 vulnerability

Reply via email to