mendelson AS4 2021 b267 released

1
min read
A- A+
read
mendelson AS4

Fix for the Log4j security problem (CVE-2021-45105)

  • Updated the system to use the fixed log4j version 2.17.0. As of today using this version does fix the problem. As this is a security issue with a Base CVSS Score of 7.5/10 it is recommended to update to this version. Please refer to https://logging.apache.org/log4j/2.x/security.html for further information.
  • Fixed the issue that the client did no logout on the server if the client process was just ended by pressing the window control (x). This resulted in an error of lost connection in the server - in case of notification a mail notification was sent to the user. If the client process is just killed this will still happen but using the window controls tries to logout first.
Tags