Create
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Sign up Log in
Products
See all
Community resources
Top groups
Explore all groups
Community resources
Learn
Community resources
Events
Community resources

Does log4j vulnerability affect confluence atlassian version 5.1.3

brindha.panneerchelvam
brindha.panneerchelvam December 22, 2021

is confluence atlassian version 5.1.3 using BAD version of Log4j, if yes please share the plan to upgrade to 2.16 or 2.17.

on server we could find below jars in our installation path.

./confluence-5.1.3-prd/confluence/WEB-INF/lib/slf4j-log4j12-1.6.4.jar
./confluence-5.1.3-prd/confluence/WEB-INF/lib/log4j-1.2.15.jar

 

Answer
Watch
Like Be the first to like this
337 views

2 answers

1 vote
Jack Brickey
Jack Brickey
Community Leader
Community Leader
Community Leaders are connectors, ambassadors, and mentors. On the online community, they serve as thought leaders, product experts, and moderators.
Become a leader
December 22, 2021

I would refer you here for any Log4j questions. multiple-products-security-advisory-log4j-vulnerable-to-remote-code-execution 

and you can always reference the Atlassian Trust page for any security questions. Finally the Atlassian Support page. 

Reply
1 vote
Mikael Sandberg
Mikael Sandberg
Community Leader
Community Leader
Community Leaders are connectors, ambassadors, and mentors. On the online community, they serve as thought leaders, product experts, and moderators.
Become a leader
December 22, 2021

Hi @brindha.panneerchelvam,

Welcome to Atlassian Community!

Please check out this thread for the latest information regarding Log4j, https://community.atlassian.com/t5/Trust-Security-articles/Atlassian-s-Response-to-Log4j-CVE-2021-44228/ba-p/1886598 

Reply

Suggest an answer

Log in or Sign up to answer
Confluence
Confluence
TAGS
AUG Leaders

Atlassian Community Events

    See all events