Jump to content

Log4j exploits (not 44228)


Arkyo

Recommended Posts

 

 am sure most of us have heard of the 44228 exploit that was discovered like a week ago, and I know that Mojang & Forge have released fixes respectively.

HOWEVER there are even more log4j exploits:  https://imgur.com/M6E9If6 CVE 45046 and 45105

I wonder if anyone knows whether Mojang/Forge acknowledge these? 

 

On top of that, Forge 37.1.1&36.2.20 fixed 44228, but they are still using Log4j 2.15, which means they are still affected by these 2 new exploits right?

 

Edited by Arkyo
Link to comment
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.

Guest
Unfortunately, your content contains terms that we do not allow. Please edit your content to remove the highlighted words below.
Reply to this topic...

×   Pasted as rich text.   Restore formatting

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

Announcements



×
×
  • Create New...

Important Information

By using this site, you agree to our Terms of Use.