Oracle Linux 7 ELSA-2022-0442: Important Log4j Security Update

oracle

February 7, 2022

The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network:

Summary

[0:1.2.17-18] - Fix Unsafe deserialization flaw in Chainsaw log viewer - Fix SQL injection when application is configured to use JDBCAppender - Fix remote code execution when application is configured to use JMSSink - Resolves: CVE-2022-23307, CVE-2022-23305, CVE-2022-23302

Topics Covered

security advisory remote code execution SQL injection Oracle Linux log4j

SRPMs

https://oss.oracle.com:443/ol7/SRPMS-updates/log4j-1.2.17-18.el7_4.src.rpm

x86_64

log4j-1.2.17-18.el7_4.noarch.rpm log4j-javadoc-1.2.17-18.el7_4.noarch.rpm log4j-manual-1.2.17-18.el7_4.noarch.rpm

aarch64

Severity

important

Lowest

Low

Medium

High

Critical

Related CVEs: CVE-2022-23302 CVE-2022-23305 CVE-2022-23307

Topics Covered

security advisory remote code execution SQL injection Oracle Linux log4j

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Oracle Linux 7 ELSA-2022-0442: Important Log4j Security Update

Summary

Topics Covered

SRPMs

x86_64

aarch64

Topics Covered

Get the latest News and Insights

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Oracle Linux 7 ELSA-2022-0442: Important Log4j Security Update

Summary

Topics Covered

SRPMs

x86_64

aarch64

Topics Covered

Get the latest News and Insights

Related Articles

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!