mirror of
https://github.com/cisagov/log4j-affected-db.git
synced 2024-11-23 00:50:48 +00:00
Update CISA guidance
This commit is contained in:
parent
a366ed86d7
commit
c534698363
1 changed files with 3 additions and 2 deletions
|
@ -3,9 +3,10 @@
|
||||||
This repository provides
|
This repository provides
|
||||||
[CISA's guidance](https://www.cisa.gov/uscert/apache-log4j-vulnerability-guidance)
|
[CISA's guidance](https://www.cisa.gov/uscert/apache-log4j-vulnerability-guidance)
|
||||||
and an overview of related software regarding the Log4j vulnerability
|
and an overview of related software regarding the Log4j vulnerability
|
||||||
(CVE-2021-44228). CISA encourages users and administrators to review the
|
(CVE-2021-44228). CISA urges users and administrators to review the
|
||||||
[official Apache release](https://logging.apache.org/log4j/2.x/security.html)
|
[official Apache release](https://logging.apache.org/log4j/2.x/security.html)
|
||||||
and upgrade to Log4j 2.17.1 or apply the recommended mitigations immediately.
|
for updates and mitigation guidance, and upgrade to Log4j 2.17.1 (Java 8), 2.12.4
|
||||||
|
(Java 7) and 2.3.2 (Java 6).
|
||||||
|
|
||||||
The information in this repository is provided "as is" for informational
|
The information in this repository is provided "as is" for informational
|
||||||
purposes only and is being assembled and updated by CISA through
|
purposes only and is being assembled and updated by CISA through
|
||||||
|
|
Loading…
Reference in a new issue