Ubuntu Security Update USN-5222-1: Apache Log4j 2 vulnerabilities

Thread starter LinuxBot
Start date Jan 11, 2022

LinuxBot

Member

Jan 11, 2022

#1

It was discovered that Apache Log4j 2 was vulnerable to remote code execution (RCE) attack when configured to use a JDBC Appender with a JNDI LDAP data source URI. A remote attacker could possibly use this issue to cause a crash, leading to a denial of service. (CVE-2021-44832) Hideki Okamoto and Guy Lederfein discovered that Apache Log4j 2 did not protect against infinite recursion in lookup evaluation. A remote attacker could possibly use this issue to cause Apache Log4j 2 to crash, leading to a denial of service. This issue only affected Ubuntu 18.04 LTS. (CVE-2021-45105)

Continue reading...

You must log in or register to reply here.

Similar threads

Ubuntu Security Update USN-8239-1: Apache HTTP Server vulnerabilities

Replies: 0

Views: 174

May 6, 2026

LinuxBot

Ubuntu Security Update USN-8338-2: Apache HTTP Server regression

Replies: 0

Views: 76

May 29, 2026

LinuxBot

Ubuntu Security Update USN-8338-1: Apache HTTP Server vulnerabilities

Replies: 0

Views: 80

May 28, 2026

LinuxBot

Ubuntu Security Update USN-8364-1: Apache Commons Lang vulnerability

Replies: 0

Views: 64

Jun 2, 2026

LinuxBot

Ubuntu Security Update USN-8282-2: Unbound vulnerabilities

Replies: 0

Views: 90

Jun 2, 2026

LinuxBot

Share:

Facebook X Bluesky LinkedIn Reddit Pinterest Tumblr WhatsApp Email Link

Follow Linux.org

Linux.org YouTube Channel

Members online

NicWelds

Total: 1,540 (members: 1, guests: 1,539)

Latest posts

Linux AV detection is fubar
- Latest: Trml
- 45 minutes ago
Linux Security
Linux Mint - can't access terminal
- Latest: Gerb
- Today at 9:34 PM
Getting Started
What are Your Takes On "GNU Purism"
- Latest: Trml
- Today at 9:13 PM
General Computing
Cannot install any Linux
- Latest: Brickwizard
- Today at 9:06 PM
Getting Started
Files missing
- Latest: piorunz
- Today at 8:20 PM
Mint

Top