Hi all Is the vulnerable log4j library in use by Discourse - can an employee please issue a statement on potential exposure/review. Thanks

[image] Discourse and the Log4j vulnerability announcements On 9th December, CVE 2021-44228 was published for log4j, a commonly-used Java logging library. Subsequently, CVE-2021-45046 and CVE-2021-45105 have also been published. We’ve received a number of questions about t…

CVE-2021-44228 - log4j - Discourse vulnerable?

Installation

david (David Taylor) December 20, 2021, 9:28am 8

3 Likes

Topic		Replies	Views
Discourse and the Log4j vulnerability Announcements security	1	1077	March 18, 2022
How to run Discourse as an Apache VirtualHost Installation	5	2563	August 5, 2020
How to run Discourse in Apache vhost, not Nginx Installation unsupported-install	30	2280	August 14, 2023
Apache w/ SSL + Discourse: Next steps? Installation	12	1598	August 1, 2020
Wanting to run Discourse alongside apache Installation	13	1922	September 7, 2019

CVE-2021-44228 - log4j - Discourse vulnerable?

Related topics