cubetiq/ cubetiq-security-advisors
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
cubetiq-security-advisors/cve-2021-44225.md
2021-12-11 10:33:33 +07:00

936 B
Raw Blame History

Zero-Day CVE-2021-44225 (Log4J Java Library)

Details: https://cubetiq.atlassian.net/browse/CERT-1

Resolved

Upgrade log4j to version: 2.15.0

Spring Boot

Gradle Kotlin DSL (build.gradle.kts) (Gradle Multiple Modules)
allprojects {
    // Fixed Zero-Day CVE-2021-44225: https://cubetiq.atlassian.net/browse/CERT-1
    ext["log4j2.version"] = "2.15.0"
}
Gradle Kotlin DSL (build.gradle.kts) (Gradle Single Module)
implementation(platform("org.apache.logging.log4j:log4j-bom:2.15.0"))

Or

ext["log4j2.version"] = "2.15.0"
Gradle DSL (build.gradle) (Gradle Multiple Modules)
allprojects {
    ext {
        // Fixed Zero-Day CVE-2021-44225: https://cubetiq.atlassian.net/browse/CERT-1
        set('log4j2.version', '2.15.0')
    }
}

Or

ext {
    set('log4j2.version', '2.15.0')
}