Update WhatsNew to reflect use of log4j 2.17.1

2024-11-22 12:11:55 +00:00 · 2022-01-24 12:54:15 -05:00 · 2022-01-24 12:54:15 -05:00 · c39d792e9a
commit c39d792e9a
parent 97f6dd1313
1 changed files with 5 additions and 5 deletions
--- a/Ghidra/Configurations/Public_Release/src/global/docs/WhatsNew.html
+++ b/Ghidra/Configurations/Public_Release/src/global/docs/WhatsNew.html
@ -56,8 +56,8 @@
 	<BLOCKQUOTE>
 	<UL>
    <li>Delete any log4j jar files in <b>Ghidra/Framework/Generic/lib</b>.</li>
-    <li>Replace those jar files with the newer log4j 2.17.0 version: <b>log4j-api-2.17.0.jar</b> and <b>log4j-core-2.17.0.jar</b>.</li>
-    <li>Update the log4j version to refer to 2.17.0 in <b>&ltinstall_dir&gt/Ghidra/Features/GhidraServer/data/classpath.frag</b>.</li></UL>
+    <li>Replace those jar files with the newer log4j 2.17.1 version: <b>log4j-api-2.17.1.jar</b> and <b>log4j-core-2.17.1.jar</b>.</li>
+    <li>Update the log4j version to refer to 2.17.1 in <b>&ltinstall_dir&gt/Ghidra/Features/GhidraServer/data/classpath.frag</b>.</li></UL>
    </BLOCKQUOTE>
    </p>
    
@ -65,14 +65,14 @@
 	You can find these in the latest Ghidra 10.1.1 release, or from:
 	<BLOCKQUOTE>
 	<UL>
-    <li>https://repo1.maven.org/maven2/org/apache/logging/log4j/log4j-api/2.17.0/log4j-api-2.17.0.jar</li>
-    <li>https://repo1.maven.org/maven2/org/apache/logging/log4j/log4j-core/2.17.0/log4j-core-2.17.0.jar</li>
+    <li>https://repo1.maven.org/maven2/org/apache/logging/log4j/log4j-api/2.17.1/log4j-api-2.17.1.jar</li>
+    <li>https://repo1.maven.org/maven2/org/apache/logging/log4j/log4j-core/2.17.1/log4j-core-2.17.1.jar</li>
    </UL></BLOCKQUOTE>
    </p>
    
    <P>
    The details of the vulnerabilities can be found in the following:
-    CVE-2021-44228, CVE-2021-45046, CVE-2021-45105.
+    CVE-2021-44228, CVE-2021-44832, CVE-2021-45046, CVE-2021-45105.
    </p>
    <hr>