Loading...

XML

Word

Printable

Type: Task
Resolution: Won't Do
Priority: Major
Fix Version/s: 1.6.6.GA
Affects Version/s: None
Component/s: None
Labels:
None

Epic Link:
Productization for 1.6.6
Blocked:
False
Ready:
False
Release Note Text:
ProdSec decided that we do not need to patch the log4j 1 CVE.
Target Release:

1.6.6.GA
Market:

SFDC Cases Counter:
SFDC Cases Open:
SFDC Cases Links:

Kafka 2.6.2 needs to be rebuilt with the fixed Log4j 1 version that addresses https://access.redhat.com/security/cve/CVE-2021-4104

blocks

ENTMQST-3569 Create 1.6.6 AMQ-Stream-Distribution

Closed

is blocked by

ENTMQST-3572 Rebuild log4j 1.2.17 with CVE fixes

Closed

Assignee:: Unassigned

Reporter:: Thomas Cooper

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Created:: 2021/12/15 10:34 AM

Updated:: 2022/09/09 6:23 AM

Resolved:: 2021/12/16 9:28 AM