Debian LTS DLA-2842-1 Apache Log4j2 Code Execution Risk Moderate Advisory

debian lts

December 12, 2021

Chen Zhaojun of Alibaba Cloud Security Team discovered that JNDI features used in configuration, log messages, and parameters do not protect against attacker controlled LDAP and ot...

Topics Covered

security advisory moderate security issue code execution debian attack vector apache-log4j2

Summary

We recommend that you upgrade your apache-log4j2 packages.

For the detailed security status of apache-log4j2 please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/source-package/apache-log4j2

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS

-------------------------------------------------------------------------Package: apache-log4j2

Version: 2.7-2+deb9u1

CVE ID: CVE-2021-44228

Debian Bug: 1001478

Topics Covered

security advisory moderate security issue code execution debian attack vector apache-log4j2

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Debian LTS DLA-2842-1 Apache Log4j2 Code Execution Risk Moderate Advisory

Topics Covered

Summary

Topics Covered

Get the latest News and Insights

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Debian LTS DLA-2842-1 Apache Log4j2 Code Execution Risk Moderate Advisory

Topics Covered

Summary

Topics Covered

Get the latest News and Insights

Related Articles

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!