eMagiz Runtime - 5.0.4
Version 12.1 by Martijn Woudstra on 2022/06/22 13:56
Fourth maintenance release in the eMagiz 5.0.x line. This release fixes Log4J security vulnerabilities CVE-2021-44228 and CVE-2021-45046.
Find out more in our Release blog.
Bug Fixes
- Updated OPS4J Pax Logging version 1.10.1 to version 1.11.11. Internally this uses Apache Log4j 2, which is updated from version 2.8.2 to 2.16.0 in this release. This fixed the following two security vulnerabilities:
- https://nvd.nist.gov/vuln/detail/CVE-2021-44228 (CVSS score 10.0 - Critical)
- https://nvd.nist.gov/vuln/detail/CVE-2021-45046 (CVSS score 3.7 - Low)