Publishing details
Changelog
apache-log4j1.2 (1.2.17-10ubuntu0.21.10.1) impish-security; urgency=medium
* SECURITY UPDATE: code execution via JMS appender
- debian/patches/0002-Disable-JNDI-by-default.patch: Add an additional
option that disables the JMS appender by default.
- CVE-2021-4104
* Environments that require JMS Appender will need to add the following
to their configuration file: log4j.appender.jms.Enabled=true
-- Paulo Flabiano Smorigo <email address hidden> Thu, 06 Jan 2022 19:57:41 +0000
Builds
Package files