As you know, zero-day vulnerability has been found in Log4j and the exploit code has also been published. The vulnerability, tracked as CVE-2021-44228[1], is called Log4Shell or LogJam, and allows for the complete hijacking of Log4j 2.0-beta9 to 2.14.1 systems. But you don't have to have a concern about it on Ant Media's side, because Ant Media Server uses Logback, instead of Log4j. Shortly, no further action is required on Ant Media Server side.
Question
Murat Eminoglu
Hello everyone,
As you know, zero-day vulnerability has been found in Log4j and the exploit code has also been published. The vulnerability, tracked as CVE-2021-44228[1], is called Log4Shell or LogJam, and allows for the complete hijacking of Log4j 2.0-beta9 to 2.14.1 systems. But you don't have to have a concern about it on Ant Media's side, because Ant Media Server uses Logback, instead of Log4j. Shortly, no further action is required on Ant Media Server side.
[1] https://nvd.nist.gov/vuln/detail/CVE-2021-44228
Regards.
Link to comment
Share on other sites
Top Posters For This Question
1
Popular Days
Dec 13
1
Top Posters For This Question
Murat Eminoglu 1 post
Popular Days
Dec 13 2021
1 post
0 answers to this question
Recommended Posts