Fixed log4j JNDI vulnerability CVE-2021-45046 - aur.git

diff options

author	Torben Nehmer	2021-12-23 20:42:20 +0100
committer	Torben Nehmer	2021-12-23 20:42:20 +0100
commit	262b3cf591026f2397e39123e8fdc71b49f4d974 (patch)
tree	07a5d33b8b8efe3aba7dd3b3fe8bc7b58b4fd360 /.SRCINFO
parent	9ac7685fb1665e518dd5636418e647320a2cbcae (diff)
download	aur-262b3cf591026f2397e39123e8fdc71b49f4d974.tar.gz

Fixed log4j JNDI vulnerability CVE-2021-45046

Fix the log4j security vulnerability CVE-2021-45046. This can be trivially exploited as remote code execution. Remove log4j's ability to do JNDI lookups entirely by removing JndiLookup.class from the package. See also: https://logging.apache.org/log4j/2.x/security.html https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-45046

Diffstat (limited to '.SRCINFO')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode:

Arch Linux User Repository