is confluence atlassian version 5.1.3 using BAD version of Log4j, if yes please share the plan to upgrade to 2.16 or 2.17.
on server we could find below jars in our installation path.
./confluence-5.1.3-prd/confluence/WEB-INF/lib/slf4j-log4j12-1.6.4.jar
./confluence-5.1.3-prd/confluence/WEB-INF/lib/log4j-1.2.15.jar
I would refer you here for any Log4j questions. multiple-products-security-advisory-log4j-vulnerable-to-remote-code-execution
and you can always reference the Atlassian Trust page for any security questions. Finally the Atlassian Support page.
Welcome to Atlassian Community!
Please check out this thread for the latest information regarding Log4j, https://community.atlassian.com/t5/Trust-Security-articles/Atlassian-s-Response-to-Log4j-CVE-2021-44228/ba-p/1886598
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.