[ol7_latest] log4j-1.2.17-18.el7_4.noarch

Name:	log4j
Version:	1.2.17
Release:	18.el7_4
Architecture:	noarch
Group:	Unspecified
Size:	519216
License:	ASL 2.0
RPM:	log4j-1.2.17-18.el7_4.noarch.rpm
Source RPM:	log4j-1.2.17-18.el7_4.src.rpm
Build Date:	Mon Feb 07 2022
Build Host:	build-ol7-i386.oracle.com
Vendor:	Oracle America
URL:	http://logging.apache.org/log4j
Summary:	Java logging package
Description:	Log4j is a tool to help the programmer output log statements to a variety of output targets.

Changelog (Show File list) (Show related packages)

Wed Feb 02 2022 Mikolaj Izdebski <mizdebsk@redhat.com> - 0:1.2.17-18

- Fix Unsafe deserialization flaw in Chainsaw log viewer
- Fix SQL injection when application is configured to use JDBCAppender
- Fix remote code execution when application is configured to use JMSSink
- Resolves: CVE-2022-23307, CVE-2022-23305, CVE-2022-23302

Wed Dec 15 2021 Mikolaj Izdebski <mizdebsk@redhat.com> - 0:1.2.17-17
```
- Fix remote code execution vulnerability
- Resolves: CVE-2021-4104
```

Tue Jul 11 2017 Mikolaj Izdebski <mizdebsk@redhat.com> - 0:1.2.17-16

- Fix socket receiver deserialization vulnerability
- Resolves: CVE-2017-5645

Fri Dec 27 2013 Daniel Mach <dmach@redhat.com> - 01.2.17-15
```
- Mass rebuild 2013-12-27
```
Thu Oct 24 2013 Mikolaj Izdebski <mizdebsk@redhat.com> - 0:1.2.17-14
```
- Remove desktop files
```
Thu Jul 11 2013 Michal Srb <msrb@redhat.com> - 0:1.2.17-13
```
- Enable tests
- Fix BR
```
Tue May 14 2013 Ville Skyttä <ville.skytta@iki.fi> - 0:1.2.17-12
```
- Add DTD public id to XML and SGML catalogs.
```
Mon Apr 29 2013 Mikolaj Izdebski <mizdebsk@redhat.com> - 0:1.2.17-11
```
- Remove unneeded BR: maven-idea-plugin
```
Thu Apr 11 2013 Mikolaj Izdebski <mizdebsk@redhat.com> - 0:1.2.17-10
```
- Fix manpage names, thanks to Michal Srb for reporting
```

Mon Apr 08 2013 Mikolaj Izdebski <mizdebsk@redhat.com> - 0:1.2.17-9

- Reindex sources in more sensible way
- Add manual pages; resolves: rhbz#949413