MacMusic  |  PcMusic  |  440 Software  |  440 Forums  |  440TV  |  Zicos
log
Recherche

Apache takes off, nukes insecure feature at the heart of Log4j from orbit with v2.16

mercredi 15 décembre 2021, 00:30 , par TheRegister
Now open-source logging library's JNDI disabled entirely by default, message lookups removed
Last week, version 2.15 of the widely used open-source logging library Log4j was released to tackle a critical security hole, dubbed Log4Shell, which could be trivially abused by miscreants to hijack servers and apps over the internet.…
https://go.theregister.com/feed/www.theregister.com/2021/12/14/apache_log4j_v2_16_jndi_disabled_defa...
News copyright owned by their original publishers | Copyright © 2004 - 2024 Zicos / 440Network
Date Actuelle
ven. 29 mars - 10:22 CET