DSA-5024-1

NameDSA-5024-1
Descriptionapache-log4j2 - security update
SourceDebian
ReferencesCVE-2021-45105

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
apache-log4j2 (PTS)buster2.11.1-2vulnerable
buster (security)2.17.0-1~deb10u1fixed
bullseye2.16.0-1~deb11u1vulnerable
bullseye (security)2.17.0-1~deb11u1fixed

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
apache-log4j2sourcebuster2.17.0-1~deb10u1
apache-log4j2sourcebullseye2.17.0-1~deb11u1

Search for package or bug name: Reporting problems