Log4Shell log4j vulnerability (CVE-2021-44228) doe...
# sdfs
Sim Greenbaum
12/14/2021, 5:29 AMLog4Shell log4j vulnerability (CVE-2021-44228) does this affect sdf / netsuite /Oracle etc
b
battk
12/14/2021, 7:14 AMtaking a look through cli-2021.2.2.jar
battk
12/14/2021, 7:14 AMthe answer appears to be yes
battk
12/14/2021, 7:15 AMthey appear to have log4j 2.14.1 in their maven dependencies
s
Sim Greenbaum
12/14/2021, 10:32 AMIs there a solution ? Or wait till they catch on
l
Luis Pérez Villegas (NS Devtools SE)
12/14/2021, 12:20 PMHi,
We are working right now to upgrade log4j dependency to 2.16.0 version, which fixes this vulnerability.
We would release a new version in the upcoming days and keep you updated.
s
Sam
12/14/2021, 2:57 PM@Luis Pérez Villegas (NS Devtools SE) will we see an official announcement or update anywhere (SuiteAnswers, etc)?
l
Luis Pérez Villegas (NS Devtools SE)
12/15/2021, 10:00 AM@Sam. Yes sure, I don't know if it would be in SuiteAnswers but in all the places where it is normally announced.
Also, we would announce it in this channel.
5 Views