Security update for log4j12
This update for log4j12 fixes the following issues:
- CVE-2021-4104: Disable the JMSAppender class from log4j to protect against
the log4jshell vulnerability. [bsc#1193662]
This update was imported from the SUSE:SLE-15-SP2:Update update project.
-
Submitted by
Peter Simons (psimons)
Fixed bugs
bnc#1193662
CVE-2021-4104: log4j,log4j12: log4j v.1.2.x remote code execution through JMS API via the ldap JNDI parser
