apache-log4j1.2 1.2.17-8+deb10u1ubuntu0.2 source package in Ubuntu
Changelog
apache-log4j1.2 (1.2.17-8+deb10u1ubuntu0.2) bionic-security; urgency=medium
* SECURITY UPDATE: Improper Neutralization
- debian/patches/CVE-2022-23302.patch: Replace lookup code.
- debian/patches/CVE-2022-23305.patch: Add flushBufferSecure and
JdbcPatternParser.
- debian/patches/CVE-2022-23307.patch: Add
HardenedLoggingEventInputStream, HardenedObjectInputStream, and
SocketAppenderTest.java
- CVE-2022-23302
- CVE-2022-23305
- CVE-2022-23307
-- Paulo Flabiano Smorigo <email address hidden> Fri, 17 Mar 2023 11:50:35 -0300
Upload details
- Uploaded by:
- Paulo Flabiano Smorigo
- Uploaded to:
- Bionic
- Original maintainer:
- Ubuntu Developers
- Architectures:
- all
- Section:
- java
- Urgency:
- Medium Urgency
See full publishing history Publishing
| Series | Published | Component | Section | |
|---|---|---|---|---|
| Bionic | updates | universe | java | |
| Bionic | security | universe | java |
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| apache-log4j1.2_1.2.17.orig.tar.gz | 539.1 KiB | f293c2b8cb5a68c43b8c83a41891d3ef667841c2abc4dcfb172292a49eb5336f |
| apache-log4j1.2_1.2.17-8+deb10u1ubuntu0.2.debian.tar.xz | 17.3 KiB | 217d0166c02cbf4db5a4c9b012155941a17b085dbb7cc1e5b16a23dfc90f0f00 |
| apache-log4j1.2_1.2.17-8+deb10u1ubuntu0.2.dsc | 2.4 KiB | b7416893337a72768fc6ec2f1e19521fb0cc9936a7d55be26ea6446a7718f350 |
Available diffs
Binary packages built by this source
- liblog4j1.2-java: Logging library for java
log4j is a tool to help the programmer output log statements to a variety of
output targets.
.
It is possible to enable logging at runtime without modifying the application
binary. The log4j package is designed so that log statements can remain in
shipped code without incurring a high performance cost.
.
One of the distinctive features of log4j is the notion of hierarchical
loggers. Using loggers it is possible to selectively control which log
statements are output at arbitrary granularity.
.
Log4j can output to: a file, a rolling file, a database with a JDBC driver,
many output asynchronously, a JMS Topic, a swing based logging console,
the NT event log, /dev/null, a SMTP server (using javamail), a socket server,
syslog, telnet daemon and stdout.
.
The format of the output can be defined using one of the various layout
(or user defined layout) like: simple text, html, date, pattern defined and
XML.
- liblog4j1.2-java-doc: Documentation for liblog4j1.2-java
The javadoc API documentation for the logging library
from the Apache Jakarta project. The documentation is
for the version 1.2 of the log4j API.
