Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Vulnerabilities in log4j #1741

Closed
ssuvorov-fls opened this issue Jan 14, 2021 · 2 comments
Closed

Vulnerabilities in log4j #1741

ssuvorov-fls opened this issue Jan 14, 2021 · 2 comments
Assignees
@ssuvorov-fls

Comments

@ssuvorov-fls
Copy link
Contributor

Issues

Deserialization of Untrusted Data

https://owasp.org/www-community/vulnerabilities/Deserialization_of_untrusted_data

Remediation

  • Upgrade to log4j 2
@ssuvorov-fls ssuvorov-fls added this to the V2.8.1 milestone Jan 14, 2021
@ssuvorov-fls ssuvorov-fls self-assigned this Jan 14, 2021
@ssuvorov-fls
Copy link
Contributor Author

Raising of major version can cause problems with configuration and other unpredictable behavior

@anthonysena
Copy link
Collaborator

Closed via #1970.

@anthonysena anthonysena removed this from the [LEGACY] V3.0.0. "Atlas 3.0" milestone Feb 14, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@ssuvorov-fls ssuvorov-fls

Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@anthonysena @ssuvorov-fls