Jazz Forum Welcome to the Jazz Community Forum Connect and collaborate with IBM Engineering experts and users

Apache Log4j Library Vulnerability

Questions
Tags
Users
Badges
Sean F
(1.3k252162) Dec 13 '21, 11:10 a.m.

Does anybody know whether DOORS Next (7)  (or DOORS 9.6.1 or later) utilises the Apache Log4j library in its implementation ?

This library has been identified as having a critical vulnerability

https://www.kaspersky.com.au/blog/log4shell-critical-vulnerability-in-apache-log4j/30102/

0 votes

2 answers
1,380 views
0 votes

2 answers

Permanent link
Bartosz Chrabski
(3.6k22949) Dec 13 '21, 11:14 a.m.

 Duplicate of https://jazz.net/forum/questions/278315/security-check

0 votes

Permanent link
Erica Tran
JAZZ DEVELOPER (1.4k7) Dec 13 '21, 11:15 a.m.
Hi Sean,

We are working with to understand the impact to our Products and any remediation. As of right now this is the information that we have on this topic.
 
An update on the Apache Log4j CVE-2021-44228 vulnerability

0 votes

Your answer

Register or log in to post your answer.

Dashboards and work items are no longer publicly available, so some links may be invalid. We now provide similar information through other means. Learn more here.

Ask a question
Guidelines
FAQ
Search context
Follow this question

By Email: 

Once you sign in you will be able to subscribe for any updates here.

By RSS:

Answers
Answers and Comments
Question details

Question asked: Dec 13 '21, 11:10 a.m.

Question was seen: 1,380 times

Last updated: Dec 13 '21, 11:15 a.m.

Confirmation Cancel Confirm