Overview

File _patchinfo of Package patchinfo.17387

<patchinfo incident="17387">
  <category>security</category>
  <rating>important</rating>
  <packager>jzerebecki</packager>
<issue tracker="cve" id="2022-23302"/>
<issue tracker="cve" id="2022-23305"/>
<issue tracker="cve" id="2022-23307"/>
<issue tracker="cve" id="2021-4104"/>
<issue tracker="bnc" id="1194842"/>
<issue tracker="bnc" id="1194843"/>
<issue tracker="bnc" id="1194844"/>
<issue tracker="bnc" id="1193662"/>
  <summary>Security update for kafka</summary>
<description>
This update for kafka, kafka-kit fixes following issues:


- Remove JDBCAppender, JMSSink, chainsaw from log4j jars during build to
  prevent bsc#1194842, CVE-2022-23302, bsc#1194843, CVE-2022-23305,
  bsc#1194844, CVE-2022-23307

- Rebuild with kafka-kit change to
  Remove JMSAppender from log4j jars during build to
  prevent bsc#1193662, CVE-2021-4104
</description>
</patchinfo>
openSUSE Build Service is sponsored by
Places