简体繁体 English

如果 jar 在 windows/linux/mac 中使用易受攻击的 log4j 版本，如何查找和修复

[英]How to find and fix if a jar is using vulnerable version of log4j in windows/linux/mac

原文 2021-12-16 09:45:18 3 1 linux/ windows/ log4j/ cve-2021-44228

log4j security vulnerbility find and fix? log4j 安全漏洞找到并修复？ Any tool to help find the current usage of log4j version and fix for springboot app.任何有助于查找 log4j 版本的当前使用情况并修复 springboot 应用程序的工具。

1 个解决方案

Found this great tool that helped in scanning log4j dependencies used in a jar: https://github.com/logpresso/CVE-2021-44228-Scanner Install it on the required platform and run the binary with the path to scan. Found this great tool that helped in scanning log4j dependencies used in a jar: https://github.com/logpresso/CVE-2021-44228-Scanner Install it on the required platform and run the binary with the path to scan. eg: ./log4j2-scan /var/lib/jenkins/ It'll scan and show you the report.例如： ./log4j2-scan /var/lib/jenkins/它会扫描并向您显示报告。

For the Spring-boot-starter-log4j2 to use the latest version of log4j, follow the below GitHub link and make the required change in the build file to enable spring-boot to make use of the latest required package. For the Spring-boot-starter-log4j2 to use the latest version of log4j, follow the below GitHub link and make the required change in the build file to enable spring-boot to make use of the latest required package.

https://github.com/spring-projects/spring-boot/issues/28958 https://github.com/spring-projects/spring-boot/issues/28958

我如何找到 Docker Elasticserach log4j 版本 - How Can i find Docker Elasticserach log4j version

Linux上的Grails log4J记录问题 - Grails log4J Logging question on linux

在Linux中禁用log4j控制台日志记录 - Disable log4j console logging in linux

Linux中Log4j的换行符（％n）模式 - Newline(%n) pattern for Log4j in Linux

Linux中的log4j xml配置 - log4j xml configuration in linux

在Linux环境中使用log4j进行日志轮换后，Tomcat无法登录到catalina.out - Tomcat not logging to catalina.out after log rotation using log4j in linux Environment

log4j linux问题-日志文件为空 - log4j linux issue - log file is empty

使用log4j或logrotate.d旋转的Linux-Java日志 - Linux-Java logs rotating using log4j or logrotate.d

如何在Log4j写入Linux syslog的消息中更改localhost.localdomain - How can I change localhost.localdomain in the messages written by Log4j to the Linux syslog

如何在 Linux 中运行为 Windows 和 Mac 构建的 .jar 文件？ - How can I run a .jar file that was build for Windows and Mac in Linux?

暂无

暂无

声明:本站的技术帖子网页，遵循CC BY-SA 4.0协议，如果您需要转载，请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.

相关问题 我如何找到 Docker Elasticserach log4j 版本 - How Can i find Docker Elasticserach log4j version Linux上的Grails log4J记录问题 - Grails log4J Logging question on linux 在Linux中禁用log4j控制台日志记录 - Disable log4j console logging in linux Linux中Log4j的换行符（％n）模式 - Newline(%n) pattern for Log4j in Linux Linux中的log4j xml配置 - log4j xml configuration in linux 在Linux环境中使用log4j进行日志轮换后，Tomcat无法登录到catalina.out - Tomcat not logging to catalina.out after log rotation using log4j in linux Environment log4j linux问题-日志文件为空 - log4j linux issue - log file is empty 使用log4j或logrotate.d旋转的Linux-Java日志 - Linux-Java logs rotating using log4j or logrotate.d 如何在Log4j写入Linux syslog的消息中更改localhost.localdomain - How can I change localhost.localdomain in the messages written by Log4j to the Linux syslog 如何在 Linux 中运行为 Windows 和 Mac 构建的 .jar 文件？ - How can I run a .jar file that was build for Windows and Mac in Linux?

相关标签

粤ICP备18138465号 © 2020-2024 STACKOOM.COM