How to upgrade "log4j" in unifier?(CVE-2021-44228)
Dear all
In unifier(version 20.12.11) using log4j(version 2.13) but We need to upgrade log4j(version 2.13) to log4j(version 2.15).
Because of CVE-2021-44228 security issue.
(unifier/apps/ROOT/WEB-INF/lib)
log4j-1.2-api-2.13.3.jar
log4j-api-2.13.3.jar
log4j-core-2.13.3.jar
log4j-slf4j-impl-2.13.3.jar
log4j-web-2.13.3.jar
Will replacing these files with newer ones(version 2.15) solve the security issue?
(for example
log4j-1.2-api-2.13.3.jar -> log4j-1.2-api-2.15.0.jar
log4j-api-2.13.3.jar ->log4j-api-2.15.0.jar
log4j-core-2.13.3.jar -> log4j-core-2.15.0.jar
log4j-slf4j-impl-2.13.3.jar -> log4j-slf4j-impl-2.15.0.jar
log4j-web-2.13.3.jar -> log4j-web-2.15.0.jar)
Tagged:
0