Uploaded image for project: 'Hippo CMS'
  1. Hippo CMS
  2. CMS-14906

Security issue log4jshell in hippo-addon-checker?

    XMLWordPrintable

Details

    • Bug
    • Status: Closed
    • Top
    • Resolution: Fixed
    • None
    • checker-2.5.0
    • None
    • Pulsar
    • Pulsar 276 - Cycle 8 Cooldown

    Description

      We're using “hippo-addon-checker.jar”, which includes log4j.

      Is it vulnerable to log4jshell and if so how do we mitigate this problem?

      Attachments

        Issue Links

          relates to

          Bug - A problem which impairs or prevents the functions of the product. CMS-15119 Upgrade the repository checker to include latest 3rd party security patches

          • High - High priority, expected behaviour required often required for other tasks
          • Closed

          Activity

            People

              Unassigned Unassigned
              pverkaart Paul Verkaart
              Votes:
              0 Vote for this issue
              Watchers:
              5 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: