Threat Encyclopedia

RHSA-2022:5053-Security Advisory

description-logoDescription

Log4j is a tool to help the programmer output log statements to a variety of output targets. Security Fix(es): log4j: deserialization of untrusted data in SocketServer (CVE-2019-17571) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. SolutionFor details on how to apply this update, which includes the changes described in this advisory, refer to:https://access.redhat.com/articles/11258

affected-products-logoAffected Applications

log4j

CVE References

CVE-2019-17571

Telemetry logoTelemetry