Back
Dec 13, 2021
BACKUP EAGLE® und log4j
Dear customer,
as you have probably already learned from the media, a security vulnerability has been discovered in connection with a Java library (Log4J).
The vulnerability affects log4j-2 versions up to 2.14.1.
BACKUP EAGLE® uses log4j 1.2.17. , but only "RollingFileAppender" and "ConsoleAppender" are used in our configuration, which are not affected.
This log4j 1.2.17 version is only vulnerable if the "JMSAppender" is used.
As a precautionary measure, we are updating BACKUP EAGLE® at short notice to log4j version 2.15, in which the vulnerability is closed.
Best regards,
Your BACKUP EAGLE Team
Ihr BACKUP EAGLE Team