diff options
author | Torben Nehmer | 2021-12-23 20:42:20 +0100 |
---|---|---|
committer | Torben Nehmer | 2021-12-23 20:42:20 +0100 |
commit | 262b3cf591026f2397e39123e8fdc71b49f4d974 (patch) | |
tree | 07a5d33b8b8efe3aba7dd3b3fe8bc7b58b4fd360 /.SRCINFO | |
parent | 9ac7685fb1665e518dd5636418e647320a2cbcae (diff) | |
download | aur-262b3cf591026f2397e39123e8fdc71b49f4d974.tar.gz |
Fixed log4j JNDI vulnerability CVE-2021-45046
Fix the log4j security vulnerability CVE-2021-45046. This can be
trivially exploited as remote code execution.
Remove log4j's ability to do JNDI lookups entirely by removing
JndiLookup.class from the package.
See also:
https://logging.apache.org/log4j/2.x/security.html
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-45046
Diffstat (limited to '.SRCINFO')
0 files changed, 0 insertions, 0 deletions