search cancel

Jasper log4j & Spring Vulnerabilities

book

Article ID: 240581

calendar_today

Updated On:

Products

CA Spectrum DX NetOps CA Performance Management - Usage and Administration

Issue/Introduction

Is Log4j & Spring Vulnerabilities fixed in the recent CABI releases?

Environment

CABI : 7.1.1/7.1.1.1

OS : Linux

Resolution

Log4j vulnerability was addressed in CABI/JasperReports 7.9.1.2

https://techdocs.broadcom.com/us/en/ca-enterprise-software/it-operations-management/spectrum/21-2/release-information/Features-and-Enhancements-21212.html#concept.dita_7844919a-5ce7-41ee-838f-60bc7bda246f_div_2

Spring Framework vulnerability is planned to be addressed in the coming PI.

Additional Information

Once we have an ETA on it, will update this article.