r3pek/log4j-affected-db
1
0
Fork 0
mirror of https://github.com/cisagov/log4j-affected-db.git synced 2024-11-22 08:30:48 +00:00
Code Releases Activity

Update CISA guidance

Browse source
This commit is contained in:
justmurphy 2021-12-29 16:13:37 -05:00 committed by GitHub
parent a366ed86d7
commit c534698363
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23
1 changed files with 3 additions and 2 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

5
README.md
View file

@ -3,9 +3,10 @@
This repository provides
[CISA's guidance](https://www.cisa.gov/uscert/apache-log4j-vulnerability-guidance)
and an overview of related software regarding the Log4j vulnerability
(CVE-2021-44228). CISA encourages users and administrators to review the
(CVE-2021-44228). CISA urges users and administrators to review the
[official Apache release](https://logging.apache.org/log4j/2.x/security.html)
and upgrade to Log4j 2.17.1 or apply the recommended mitigations immediately.
for updates and mitigation guidance, and upgrade to Log4j 2.17.1 (Java 8), 2.12.4
(Java 7) and 2.3.2 (Java 6).
The information in this repository is provided "as is" for informational
purposes only and is being assembled and updated by CISA through