[prev in list] [next in list] [prev in thread] [next in thread] 

List:       fedora-directory-users
Subject:    =?utf-8?q?=5B389-users=5D?= Re: Log4j patch/update for 1.3.x
From:       Thierry Bordaz <tbordaz () redhat ! com>
Date:       2021-12-21 8:52:17
Message-ID: 69f4d25f-6dd0-e305-dfe2-db7e9590c351 () redhat ! com
[Download RAW message or body]

Hi,

You are right, onlly java console could be affected but none of the RHDS 
versions (including 1.3) is impacted by Log4j CVE 
(https://access.redhat.com/security/vulnerabilities/RHSB-2021-009). So 
there is no plan to release a patch in 1.3 for this CVE.

best regards
thierry

On 12/21/21 1:07 AM, William Brown wrote:
> Only the 389 console would be affected, and I think RH are the only group \
> supporting that. Generally they are very good about patching and updates, but I \
> don't have details for this. 
> > On 21 Dec 2021, at 06:38, Paul Whitney <paul.whitney@chesapeake-it.com> wrote:
> > 
> > Will there be a patch release for 1.3.x to address these Log4j vulnerabilities?
> > 
> > Paul M. Whitney, RHCSA, CISSP
> > Chesapeake IT Consulting, Inc.
> > 2680 Tobacco Rd
> > Chesapeake Beach, MD 20732
> > 
> > Work: 443-492-2872
> > Cell:   410.493.9448
> > Email: paul.whitney@chesapeake-it.com
> > CONFIDENTIALITY NOTICE
> > The information contained in this facsimile or electronic message is confidential \
> > information intended for the use of the individual or entity named above. If the \
> > reader of this message is not the intended recipient, or an employee or agent \
> > responsible for delivering this facsimile message to the intended recipient, you \
> > are hereby notified that any dissemination, or copying of this communication is \
> > strictly prohibited. If this message contains non-public personal information \
> > about any consumer or customer of the sender or intended recipient, you are \
> > further prohibited under penalty of law from using or disclosing the information \
> > to any third party by provisions of the federal Gramm-Leach-Bliley Act. If you \
> > have received this facsimile or electronic message in error, please immediately \
> > notify us by telephone and return or destroy the original message to assure that \
> > it is not read, copied, or distributed by others. 
> > _______________________________________________
> > 389-users mailing list -- 389-users@lists.fedoraproject.org
> > To unsubscribe send an email to 389-users-leave@lists.fedoraproject.org
> > Fedora Code of Conduct: \
> > https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: \
> > https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: \
> > https://lists.fedoraproject.org/archives/list/389-users@lists.fedoraproject.org \
> > Do not reply to spam on the list, report it: \
> > https://pagure.io/fedora-infrastructure
> --
> Sincerely,
> 
> William Brown
> 
> Senior Software Engineer, Identity and Access Management
> SUSE Labs, Australia
> _______________________________________________
> 389-users mailing list -- 389-users@lists.fedoraproject.org
> To unsubscribe send an email to 389-users-leave@lists.fedoraproject.org
> Fedora Code of Conduct: \
> https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: \
> https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: \
> https://lists.fedoraproject.org/archives/list/389-users@lists.fedoraproject.org Do \
> not reply to spam on the list, report it: https://pagure.io/fedora-infrastructure
_______________________________________________
389-users mailing list -- 389-users@lists.fedoraproject.org
To unsubscribe send an email to 389-users-leave@lists.fedoraproject.org
Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: https://lists.fedoraproject.org/archives/list/389-users@lists.fedoraproject.org
 Do not reply to spam on the list, report it: https://pagure.io/fedora-infrastructure


[prev in list] [next in list] [prev in thread] [next in thread]