[Info-vax] VSI Comments on OpenVMS-related Log4j2 vulnerability (CVE-2021-44228)
Craig A. Berry
craigberry at nospam.mac.com
Wed Dec 15 18:02:07 EST 2021
On 12/15/21 1:34 PM, Dennis Boone wrote:
> > perl -pi -e 's/\%m\b/%m{noLookups}/g;' log4j2.xml
>
> In examining config files in my apps, I saw things like
>
> %-1000m{...}
>
> so I think this perl snippet will be an incomplete fix.
Thanks for pointing that out. It worked for the one simple case I
needed to deal with, but it doesn't surprise me you'd need a better
regex for other cases.
More information about the Info-vax
mailing list