Uploaded image for project: 'Log4j 2'
  1. Log4j 2
  2. LOG4J2-3245

log4j-core-2.0-beta9.jar CVE-2021-44228 vulnerability

    XMLWordPrintableJSON

Details

    • Bug
    • Status: Closed
    • Major
    • Resolution: Fixed
    • 2.0-beta9
    • 2.16.0
    • Core
    • None
    • Patch, Important

    Description

      log4j-core-2.0-beta9.jar CVE-2021-44228 vulnerability is not resolved by removing org/apache/logging/log4j/core/lookup/JndiLookup.class as this version of ** depends on JndiLookup. Request to suggest how to remediate this.{}{}

      Attachments

        Issue Links

          duplicates

          Bug - A problem which impairs or prevents the functions of the product. LOG4J2-3221 JNDI lookups in layout (not message patterns) enabled in Log4j2 < 2.16.0

          • Major - Major loss of function.
          • Resolved

          Activity

            People

              Unassigned Unassigned
              chaitanyag Chaitanya
              Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: