SoftTree Technologies SoftTree Technologies
Technical Support Forums
RegisterSearchFAQMemberlistUsergroupsLog in
Apache Log4J Security Issue

 
Reply to topic    SoftTree Technologies Forum Index » 24x7 Scheduler, Event Server, Automation Suite View previous topic
View next topic
Apache Log4J Security Issue
Author Message
Don Macary



Joined: 13 Aug 2003
Posts: 50

Post Apache Log4J Security Issue Reply with quote
Hi
It looks like 24x7 MP uses Log4J 2.15 which has been identified as having a severe security vulnerability.

(I may be wrong about this as I'm not sure how to interpret the version numbers)

Can you please provide instructions on upgrading Log4J in our running 24x7 installations?

Can we just replace Log4J.1.2.15 in the 24x7 folder with the patched version ?
Or is there something else that needs to be done.

Thanks
Wed Dec 15, 2021 7:48 pm View user's profile Send private message
SysOp
Site Admin


Joined: 26 Nov 2006
Posts: 7667

Post Reply with quote
Hi Don. It doesn't use Log4J 2.x.
2.15 is actualy good patched version not vulnerable to CVE-2021-44228.

For details please see https://www.softtreetech.com/support/advisory/CVE-2021-44228.htm
Wed Dec 15, 2021 8:31 pm View user's profile Send private message
Don Macary



Joined: 13 Aug 2003
Posts: 50

Post Reply with quote
thank you very much for the quick reply!
Thu Dec 16, 2021 9:00 am View user's profile Send private message
Display posts from previous:    
Reply to topic    SoftTree Technologies Forum Index » 24x7 Scheduler, Event Server, Automation Suite All times are GMT - 4 Hours
Page 1 of 1

 
Jump to: 
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum


 

 

Powered by phpBB © 2001, 2005 phpBB Group
Design by Freestyle XL / Flowers Online.