Skip to main content

Qlik

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Announcements
See what Drew Clarke has to say about the Qlik Talend Cloud launch! READ THE BLOG
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
wissem1
Contributor
Contributor
‎2021-12-22 10:02 AM

Log4j2 Vulnerability [Talend 6.5]

Hello,

there is a patch for Talend 6.5 for Log4j2 Vulnerability ?

the JAR to patch is

pax-logging-log4j2-1.10.1-TESB.jar

Best Regard

Wissem

Labels (2)
Labels
106 Views
2 Replies
Anonymous
Not applicable
‎2021-12-22 10:23 PM

Hello,

Currently supported products are our priority. End-of-Life versions will be evaluated once we have provided remediation and/or mitigation for supported Talend products. To determine if a version is supported or has reached its end-of-life, please refer to Talend's Product support lifecycle https://www.talend.com/technical-support/support-statements/.

For more information, please take a look at this response Publication Date: December 22, 202:

https://www.talend.com/security/incident-response/

Best regards

Sabrina

106 Views
0 Likes
Anonymous
Not applicable
‎2021-12-31 01:47 AM

Hello,

The mitigation steps are now located on help.talend.com: https://document-link.us.cloud.talend.com/talend_log4j2_cve_statement?lang=en&version=latest&env=prd 

Which provides all the workarounds for studio.

The mitigation steps that we have described in the Talend Help Center apply to TOS as well.

Best regards

Sabrina

106 Views
0 Likes