Keep in mind that you can have more than one log4j-core-*.jar to patch. In my case: /opt/solr-8.4.0/server/lib/ext/log4j-core-2.11.2.jar /opt/solr-8.4.0/contrib/prometheus-exporter/lib/log4j-core-2.11.2.jar
Thomas Op wo 15 dec. 2021 om 13:52 schreef Bernd Fehling < bernd.fehl...@uni-bielefeld.de>: > > Isn't the example with "zip -q -d ..." as reported in the CVE not working > for you? > > Regards > Bernd > > Am 15.12.21 um 13:40 schrieb e_bri...@videotron.ca: > > Hi all, > > > > Looks like we are not done with log4j security problems. Someone has > recommendations about CVE-2021-45046? > > > > Eric Briere > > >
