Apache takes off, nukes insecure feature at the heart of Log4j from orbit with v2.16

Last week, version 2.15 of the widely used open-source logging library Log4j was released to tackle a critical security hole, dubbed Log4Shell, which could be trivially abused by miscreants to hijack servers and apps over the internet.

Source: https://www.theregister.com/2021/12/14/apache_log4j_2_16_jndi_disabled/


Become a Patron!

Follow me on Twitter

[instagram-feed]

Member of The Internet Defense League

Enjoy this blog? Please spread the word :)

RSS
Follow by Email