We read every piece of feedback, and take your input very seriously.
To see all available qualifiers, see our documentation.
Remote Code Execution.
Users of pax-logging 1.11.9 should update to 1.11.10. Users of pax-logging 2.0.10 should update to 2.0.11.
Set system property -Dlog4j2.formatMsgNoLookups=true
-Dlog4j2.formatMsgNoLookups=true
GHSA-jfh8-c2jp-5v3q
Impact
Remote Code Execution.
Patches
Users of pax-logging 1.11.9 should update to 1.11.10.
Users of pax-logging 2.0.10 should update to 2.0.11.
Workarounds
Set system property
-Dlog4j2.formatMsgNoLookups=trueReferences
GHSA-jfh8-c2jp-5v3q