DSA-5020-1

NameDSA-5020-1
Descriptionapache-log4j2 - security update
SourceDebian
ReferencesCVE-2021-44228

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
apache-log4j2 (PTS)buster2.17.1-1~deb10u1fixed
buster (security)2.17.0-1~deb10u1fixed
bullseye2.17.1-1~deb11u1fixed
bullseye (security)2.17.0-1~deb11u1fixed

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
apache-log4j2sourcebuster2.15.0-1~deb10u1
apache-log4j2sourcebullseye2.15.0-1~deb11u1

Search for package or bug name: Reporting problems