Back

Dec 13, 2021

BACKUP EAGLE® und log4j

Dear customer,

as you have probably already learned from the media, a security vulnerability has been discovered in connection with a Java library (Log4J).

The vulnerability affects log4j-2 versions up to 2.14.1.

BACKUP EAGLE® uses log4j 1.2.17. , but only "RollingFileAppender" and "ConsoleAppender" are used in our configuration, which are not affected.

This log4j 1.2.17 version is only vulnerable if the "JMSAppender" is used.

As a precautionary measure, we are updating BACKUP EAGLE® at short notice to log4j version 2.15, in which the vulnerability is closed.

Best regards,

Your BACKUP EAGLE Team

Ihr BACKUP EAGLE Team