You are viewing a plain text version of this content. The canonical link for it is here.

Posted to notifications@logging.apache.org by "Gary D. Gregory (Jira)" <ji...@apache.org> on 2021/12/13 15:37:00 UTC

[jira] [Commented] (LOG4J2-3219) CVE-2021-44228 on log4j version 1.2.17

    [ https://issues.apache.org/jira/browse/LOG4J2-3219?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17458485#comment-17458485 ] 

Gary D. Gregory commented on LOG4J2-3219:
-----------------------------------------

Hello [~ARUNNAIK] 

No.

Gary

 

> CVE-2021-44228 on log4j version 1.2.17
> --------------------------------------
>
>                 Key: LOG4J2-3219
>                 URL: https://issues.apache.org/jira/browse/LOG4J2-3219
>             Project: Log4j 2
>          Issue Type: Question
>         Environment: log4j version 1.2.17
>  
>            Reporter: Arun Naik
>            Priority: Major
>
> Hi,
> We are exploring CVE-2021-44228.
> We are using log4j version 1.2.17.
> We have not configured JMS-Appender in the log4j.xml conf file.
> Is our application affected by CVE-2021-44228?



--
This message was sent by Atlassian Jira
(v8.20.1#820001)