Oval Definition:	oval:org.opensuse.security:def:84711
Revision Date: 2021-12-15 Version: 1 Title: Security update for storm (Critical) Description: This update for storm fixes the following issues: - Remove JndiLookup from log4j 2.x jars during build to prevent 'log4shell' code injection. (bsc#1193641, bsc#1193611, CVE-2021-44228) - Remove JMSAppender from log4j 1.2.x jars during build to prevent attacks when JMS is enabled (bsc#1193641, bsc#1193662, CVE-2021-4104) Family: unix Class: patch Status: Reference(s): 1193611 1193641 1193662 CVE-2021-4104 CVE-2021-44228 SUSE-SU-2021:4096-1 Platform(s): SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information storm-1.2.3-3.8.2 is installed OR storm-nimbus-1.2.3-3.8.2 is installed OR storm-supervisor-1.2.3-3.8.2 is installed
BACK