AVG-2624 log
| Package | openfire |
| Status | Fixed |
| Severity | Critical |
| Type | arbitrary code execution |
| Affected | 4.6.4-1 |
| Fixed | 4.6.5-1 |
| Current | 5.0.2-1 [extra] |
| Ticket | FS#72975 |
| Created | Sun Dec 12 21:03:48 2021 |
| Issue | Severity | Remote | Type | Description |
|---|---|---|---|---|
| CVE-2021-44228 | Critical | Yes | Arbitrary code execution | Apache Log4j2 <=2.14.1 JNDI features used in configuration, log messages, and parameters do not protect against attacker controlled LDAP and other JNDI... |