Incomplete fix for CVE-2021-3100. The Apache Log4j hotpatch package starting with log4j-cve-2021-44228-hotpatch-1.1-16 will now explicitly mimic the Linux capabilities and cgroups of the target Java process that the hotpatch is applied to.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: palo_alto
Published: 2022-04-19T22:15:23.412366Z
Updated: 2024-09-17T04:10:29.989Z
Reserved: 2021-12-28T00:00:00
Link: CVE-2022-0070
Vulnrichment
No data.
NVD
Status : Modified
Published: 2022-04-19T23:15:13.177
Modified: 2024-11-21T06:37:51.710
Link: CVE-2022-0070
Redhat
No data.