[haiku-sysadmin] Re: HDS and Log4J Vulnerability

• From: "Mr. waddlesplash" <waddlesplash@xxxxxxxxx>
• To: haiku-sysadmin@xxxxxxxxxxxxx
• Date: Tue, 14 Dec 2021 12:00:06 -0500

On Sat, Dec 11, 2021 at 9:00 AM Alexander von Gluck IV
<kallisti5@xxxxxxxxxxx> wrote:

December 10, 2021 3:21 AM, "Andrew Lindesay" <apl@xxxxxxxxxxxxxx> wrote:

Hello;

You may be aware of this [1] vulnerability around Java tech that has 
recently been discovered. I
have had a look and believe that HDS should be unaffected because is it not 
using `log4j` and is
also using a version of the JVM that is not impacted.

Regards

[1] https://www.lunasec.io/docs/blog/log4j-zero-day

All versions of the JVM are now impacted, bypasses have been found. Do
any dependencies of HDS use Log4J?

-waddlesplash

• Follow-Ups:
  • [haiku-sysadmin] Re: HDS and Log4J Vulnerability
    • From: Andrew Lindesay

• References:
  • [haiku-sysadmin] HDS and Log4J Vulnerability
    • From: Andrew Lindesay
  • [haiku-sysadmin] Re: HDS and Log4J Vulnerability
    • From: Alexander von Gluck IV

Other related posts:

• » [haiku-sysadmin] HDS and Log4J Vulnerability- Andrew Lindesay
• » [haiku-sysadmin] Re: HDS and Log4J Vulnerability- Alexander von Gluck IV
• » [haiku-sysadmin] Re: HDS and Log4J Vulnerability - Mr. waddlesplash
• » [haiku-sysadmin] Re: HDS and Log4J Vulnerability- Andrew Lindesay

1. Home
2. haiku-sysadmin
3. Archive
4. 12-2021

---

• » Previous by Date
• » Next by Date
• » Related Posts
• » View list details
• » Manage your subscription

---