From 80ddb7e46223a4b0f489bb9f64154d854f748cda Mon Sep 17 00:00:00 2001 From: justmurphy <96064251+justmurphy@users.noreply.github.com> Date: Fri, 17 Dec 2021 06:03:46 -0500 Subject: [PATCH 1/6] Update README.md --- README.md | 2 ++ 1 file changed, 2 insertions(+) diff --git a/README.md b/README.md index b75333b..b7bdff6 100644 --- a/README.md +++ b/README.md @@ -6,6 +6,8 @@ administrators to review the [official Apache release](https://logging.apache.org/log4j/2.x/security.html) and upgrade to Log4j 2.16.0 or apply the recommended mitigations immediately. +The information in this repository is provided "as is" for informational purposes only and is being assembled and updated by CISA through collaboration with the broader cybersecurity community. Inquire with the manufacturer or their respective online resources for the most up-to-date information regarding any specific product listed. CISA does not endorse any commercial product or service, including any subjects of analysis. Any reference to specific commercial products, processes, or services by service mark, trademark, manufacturer, or otherwise, does not constitute or imply their endorsement, recommendation, or favoring by CISA. + ## Official CISA Guidance & Resources ## - [CISA Apache Log4j Vulnerability Guidance](https://www.cisa.gov/uscert/apache-log4j-vulnerability-guidance) From 30666cd569c841985d64c2c93838279d9c3d4652 Mon Sep 17 00:00:00 2001 From: justmurphy <96064251+justmurphy@users.noreply.github.com> Date: Fri, 17 Dec 2021 06:07:00 -0500 Subject: [PATCH 2/6] Fix line length --- README.md | 11 ++++++++++- 1 file changed, 10 insertions(+), 1 deletion(-) diff --git a/README.md b/README.md index b7bdff6..3b84f38 100644 --- a/README.md +++ b/README.md @@ -6,7 +6,16 @@ administrators to review the [official Apache release](https://logging.apache.org/log4j/2.x/security.html) and upgrade to Log4j 2.16.0 or apply the recommended mitigations immediately. -The information in this repository is provided "as is" for informational purposes only and is being assembled and updated by CISA through collaboration with the broader cybersecurity community. Inquire with the manufacturer or their respective online resources for the most up-to-date information regarding any specific product listed. CISA does not endorse any commercial product or service, including any subjects of analysis. Any reference to specific commercial products, processes, or services by service mark, trademark, manufacturer, or otherwise, does not constitute or imply their endorsement, recommendation, or favoring by CISA. +The information in this repository is provided "as is" for informational +purposes only and is being assembled and updated by CISA through +collaboration with the broader cybersecurity community. Inquire with +the manufacturer or their respective online resources for the +most up-to-date information regarding any specific product listed. CISA +does not endorse any commercial product or service, including +any subjects of analysis. Any reference to specific commercial products, +processes, or services by service mark, trademark, manufacturer, or otherwise, +does not constitute or imply their endorsement, recommendation, or favoring by +CISA. ## Official CISA Guidance & Resources ## From 1a9eb949ff945805de1dd853e5ce8cc7d9af552b Mon Sep 17 00:00:00 2001 From: justmurphy <96064251+justmurphy@users.noreply.github.com> Date: Fri, 17 Dec 2021 06:10:58 -0500 Subject: [PATCH 3/6] Update README.md --- README.md | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/README.md b/README.md index 3b84f38..13b4132 100644 --- a/README.md +++ b/README.md @@ -13,9 +13,9 @@ the manufacturer or their respective online resources for the most up-to-date information regarding any specific product listed. CISA does not endorse any commercial product or service, including any subjects of analysis. Any reference to specific commercial products, -processes, or services by service mark, trademark, manufacturer, or otherwise, -does not constitute or imply their endorsement, recommendation, or favoring by -CISA. +processes, or services by service mark, trademark, manufacturer, or +otherwise, does not constitute or imply their endorsement, recommendation, +or favoring by CISA. ## Official CISA Guidance & Resources ## From 66f1fa396c05d73fc272216e99b6e37419550ae2 Mon Sep 17 00:00:00 2001 From: justmurphy <96064251+justmurphy@users.noreply.github.com> Date: Fri, 17 Dec 2021 06:13:12 -0500 Subject: [PATCH 4/6] Fix README.md --- README.md | 11 ----------- 1 file changed, 11 deletions(-) diff --git a/README.md b/README.md index 13b4132..b75333b 100644 --- a/README.md +++ b/README.md @@ -6,17 +6,6 @@ administrators to review the [official Apache release](https://logging.apache.org/log4j/2.x/security.html) and upgrade to Log4j 2.16.0 or apply the recommended mitigations immediately. -The information in this repository is provided "as is" for informational -purposes only and is being assembled and updated by CISA through -collaboration with the broader cybersecurity community. Inquire with -the manufacturer or their respective online resources for the -most up-to-date information regarding any specific product listed. CISA -does not endorse any commercial product or service, including -any subjects of analysis. Any reference to specific commercial products, -processes, or services by service mark, trademark, manufacturer, or -otherwise, does not constitute or imply their endorsement, recommendation, -or favoring by CISA. - ## Official CISA Guidance & Resources ## - [CISA Apache Log4j Vulnerability Guidance](https://www.cisa.gov/uscert/apache-log4j-vulnerability-guidance) From b69f5e22f978f5b45b119657c37dc56a908dc0aa Mon Sep 17 00:00:00 2001 From: justmurphy <96064251+justmurphy@users.noreply.github.com> Date: Fri, 17 Dec 2021 06:16:44 -0500 Subject: [PATCH 5/6] Add language --- README.md | 10 ++++++++++ 1 file changed, 10 insertions(+) diff --git a/README.md b/README.md index b75333b..089be4e 100644 --- a/README.md +++ b/README.md @@ -6,6 +6,16 @@ administrators to review the [official Apache release](https://logging.apache.org/log4j/2.x/security.html) and upgrade to Log4j 2.16.0 or apply the recommended mitigations immediately. +The information in this repository is provided "as is" for informational +purposes only and is being assembled and updated by CISA through +collaboration with the broader cybersecurity community. Inquire with the +manufacturer or their respective online resources for the most up-to-date +information regarding any specific product listed. CISA does not endorse +any commercial product or service, including any subjects of analysis. +Any reference to specific commercial products, processes, or services by +service mark, trademark, manufacturer, or otherwise, does not constitute +or imply their endorsement, recommendation, or favoring by CISA. + ## Official CISA Guidance & Resources ## - [CISA Apache Log4j Vulnerability Guidance](https://www.cisa.gov/uscert/apache-log4j-vulnerability-guidance) From c212cde770854474f080e1d7a8b4acbcb67c7426 Mon Sep 17 00:00:00 2001 From: justmurphy <96064251+justmurphy@users.noreply.github.com> Date: Fri, 17 Dec 2021 06:18:00 -0500 Subject: [PATCH 6/6] Remove whitespace --- README.md | 16 ++++++++-------- 1 file changed, 8 insertions(+), 8 deletions(-) diff --git a/README.md b/README.md index 089be4e..58e05ee 100644 --- a/README.md +++ b/README.md @@ -6,14 +6,14 @@ administrators to review the [official Apache release](https://logging.apache.org/log4j/2.x/security.html) and upgrade to Log4j 2.16.0 or apply the recommended mitigations immediately. -The information in this repository is provided "as is" for informational -purposes only and is being assembled and updated by CISA through -collaboration with the broader cybersecurity community. Inquire with the -manufacturer or their respective online resources for the most up-to-date -information regarding any specific product listed. CISA does not endorse -any commercial product or service, including any subjects of analysis. -Any reference to specific commercial products, processes, or services by -service mark, trademark, manufacturer, or otherwise, does not constitute +The information in this repository is provided "as is" for informational +purposes only and is being assembled and updated by CISA through +collaboration with the broader cybersecurity community. Inquire with the +manufacturer or their respective online resources for the most up-to-date +information regarding any specific product listed. CISA does not endorse +any commercial product or service, including any subjects of analysis. +Any reference to specific commercial products, processes, or services by +service mark, trademark, manufacturer, or otherwise, does not constitute or imply their endorsement, recommendation, or favoring by CISA. ## Official CISA Guidance & Resources ##