https://community.qlik.com/t5/Installing-and-Upgrading/Log4j-Vulnerability/m-p/2408821#M12031 <P>We are using Talend studio 7.3.1.20202019_1130 and build the jobs and schedule them in Unix server. </P><P>The Build provides us log4j..2.12 versions. </P><P>We implemented two steps as talend advised to overcome log4j Vulnerability as given below</P><P> 1) In log4j2 xml file included {nolookups} </P><P> 2) In Studio under Run/debug JVM arguments added -Dlog4j2.formatMsgNoLookups=true</P><P></P><P></P><P>But our organization recommends following Apache standards "</P><P>customers to upgrade to Log4j 2.3.1 (for Java 6), 2.12.3 (for Java 7), or 2.17.0 (for Java 8 and later)"</P><P></P><P></P><P></P><P>So please advise how can we go for next steps, do we need to upgrade or any patch available so on, what is the best solution</P> Fri, 15 Nov 2024 22:52:05 GMT sgovinda1654106847 2024-11-15T22:52:05Z https://community.qlik.com/t5/Installing-and-Upgrading/Log4j-Vulnerability/m-p/2408821#M12031 <P>We are using Talend studio 7.3.1.20202019_1130 and build the jobs and schedule them in Unix server. </P><P>The Build provides us log4j..2.12 versions. </P><P>We implemented two steps as talend advised to overcome log4j Vulnerability as given below</P><P> 1) In log4j2 xml file included {nolookups} </P><P> 2) In Studio under Run/debug JVM arguments added -Dlog4j2.formatMsgNoLookups=true</P><P></P><P></P><P>But our organization recommends following Apache standards "</P><P>customers to upgrade to Log4j 2.3.1 (for Java 6), 2.12.3 (for Java 7), or 2.17.0 (for Java 8 and later)"</P><P></P><P></P><P></P><P>So please advise how can we go for next steps, do we need to upgrade or any patch available so on, what is the best solution</P> Fri, 15 Nov 2024 22:52:05 GMT https://community.qlik.com/t5/Installing-and-Upgrading/Log4j-Vulnerability/m-p/2408821#M12031 sgovinda1654106847 2024-11-15T22:52:05Z https://community.qlik.com/t5/Installing-and-Upgrading/Log4j-Vulnerability/m-p/2408822#M12032 <P>@sri ranga pavan govinda​, please read this <A href="https://help.talend.com/r/EeTpT8r7xmeq1HtTGQBqGA/zX7iWLX6GgxOAjJPlpXNYA" alt="https://help.talend.com/r/EeTpT8r7xmeq1HtTGQBqGA/zX7iWLX6GgxOAjJPlpXNYA" target="_blank">page </A>about log4j issue, if you are using enterprise subscription products, raise a ticket on Talend Support Portal to request a patch. </P><P>&nbsp;</P><P>Regards</P><P>Shong</P> Thu, 02 Jun 2022 07:58:46 GMT https://community.qlik.com/t5/Installing-and-Upgrading/Log4j-Vulnerability/m-p/2408822#M12032 Anonymous 2022-06-02T07:58:46Z https://community.qlik.com/t5/Installing-and-Upgrading/Log4j-Vulnerability/m-p/2408823#M12033 <P>Hello guys I was also having trouble doing the update version of the log4j library. Looking on the internet I found this article that was accurate in solving the problem. I hope they help people who use the open version.</P><P><A href="https://rob-ex.com/manual/7.0/en/topic/updating-talend-log4j-libraries" alt="https://rob-ex.com/manual/7.0/en/topic/updating-talend-log4j-libraries" target="_blank">Updating Talend Log4j libraries - User's Manual - 7.0 (rob-ex.com)</A></P> Fri, 19 Aug 2022 12:14:54 GMT https://community.qlik.com/t5/Installing-and-Upgrading/Log4j-Vulnerability/m-p/2408823#M12033 Evandao 2022-08-19T12:14:54Z