You are viewing a plain text version of this content. The canonical link for it is here.

Posted to notifications@logging.apache.org by "Chaitanya (Jira)" <ji...@apache.org> on 2021/12/16 17:21:00 UTC

[jira] [Created] (LOG4J2-3245) log4j-core-2.0-beta9.jar CVE-2021-44228 vulnerability

Chaitanya created LOG4J2-3245:
---------------------------------

             Summary: log4j-core-2.0-beta9.jar CVE-2021-44228 vulnerability 
                 Key: LOG4J2-3245
                 URL: https://issues.apache.org/jira/browse/LOG4J2-3245
             Project: Log4j 2
          Issue Type: Bug
          Components: Core
    Affects Versions: 2.0-beta9
            Reporter: Chaitanya


log4j-core-2.0-beta9.jar CVE-2021-44228 vulnerability is not resolved by removing *org/apache/logging/log4j/core/lookup/JndiLookup.class* as this version of ** depends on JndiLookup. Request to suggest how to remediate this.{*}{*}{*}{*}



--
This message was sent by Atlassian Jira
(v8.20.1#820001)