Apache Log4j Remote Code Execution
23 views
Skip to first unread message
Lars Kiesow
Dec 13, 2021, 6:29:10 AM12/13/21
to security...@opencast.org
Hi everyone,
here comes a short notice about a remote code execution vulnerability
in Apache Log4j2 which is included by Opencast. A patch is available
and will be included in Opencast 9.10 and 10.6 which are to be released
later today and will include additional security fixes as well.
For more information, see:
https://github.com/opencast/opencast/security/advisories/GHSA-mf4f-j588-5xm8
The fix will, of course, also be included in Opencast 11.0 which will be
released on Wednesday.
Best regards,
Lars
here comes a short notice about a remote code execution vulnerability
in Apache Log4j2 which is included by Opencast. A patch is available
and will be included in Opencast 9.10 and 10.6 which are to be released
later today and will include additional security fixes as well.
For more information, see:
https://github.com/opencast/opencast/security/advisories/GHSA-mf4f-j588-5xm8
The fix will, of course, also be included in Opencast 11.0 which will be
released on Wednesday.
Best regards,
Lars
Reply all
Reply to author
Forward
0 new messages