Bug#1001478: apache-log4j2: CVE-2021-44228:: Remote code injection via crafted log messages
tony mancill
tmancill at debian.org
Sat Dec 11 18:52:59 GMT 2021
On Fri, Dec 10, 2021 at 10:42:24PM +0100, Markus Koschany wrote:
> Control: owner -1 !
>
> I am currently investigating the fix for CVE-2021-44228.
Hi Markus,
Thank you both for the quick turn-around on this and for claiming
ownership of the bug in the BTS. I had started looking at the update
and appreciate that we were able to avoid duplication of effort.
Cheers,
tony
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 833 bytes
Desc: not available
URL: <http://alioth-lists.debian.net/pipermail/pkg-java-maintainers/attachments/20211211/f2ae122e/attachment-0001.sig>
More information about the pkg-java-maintainers
mailing list