Create cve-2021-44225.md

This commit is contained in:
Sambo Chea 2021-12-11 10:33:33 +07:00 committed by GitHub
parent c7e58272a4
commit 03fd9daefa
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23

41
cve-2021-44225.md Normal file
View File

@ -0,0 +1,41 @@
# Zero-Day CVE-2021-44225 (Log4J Java Library)
Details: [https://cubetiq.atlassian.net/browse/CERT-1](https://cubetiq.atlassian.net/browse/CERT-1)
***Resolved***
```text
Upgrade log4j to version: 2.15.0
```
### Spring Boot
##### Gradle Kotlin DSL (build.gradle.kts) (Gradle Multiple Modules)
```kts
allprojects {
// Fixed Zero-Day CVE-2021-44225: https://cubetiq.atlassian.net/browse/CERT-1
ext["log4j2.version"] = "2.15.0"
}
```
##### Gradle Kotlin DSL (build.gradle.kts) (Gradle Single Module)
```kts
implementation(platform("org.apache.logging.log4j:log4j-bom:2.15.0"))
```
***Or***
```kts
ext["log4j2.version"] = "2.15.0"
```
##### Gradle DSL (build.gradle) (Gradle Multiple Modules)
```gradle
allprojects {
ext {
// Fixed Zero-Day CVE-2021-44225: https://cubetiq.atlassian.net/browse/CERT-1
set('log4j2.version', '2.15.0')
}
}
```
***Or***
```kts
ext {
set('log4j2.version', '2.15.0')
}
```