Hi
Should we be replacing the log4j library on our servers or waiting for an Atlassian release.
Does this even affect Jira and Confluence?
Hi, you can find FAQs and Atlassian recommendations and updates related to Log4J here 👉 https://confluence.atlassian.com/kb/faq-for-cve-2021-44228-1103069406.html
"You can check if you are vulnerable by inspecting the Log4j configuration file. If you find a line containing the org.apache.log4j.net.JMSAppender
, you may be vulnerable. If you do not find a line containing the org.apache.log4j.net.JMSAppender
, you do not have this specific vulnerable configuration."
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Just got this update in my inbox
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.