Re: Log4j Vulnerability for janusgraph


Vinayak Bali
 

Hi Nidhi, 

I have faced the same problem. Log4j previous versions have vulnerability and security threats. But the good part is those issues were addressed in latest versions. Using the latest version resolved the issue for me. You can try using the latest version.

Thanks & Regards,
Vinayak 

On Mon, 25 Apr 2022, 5:01 pm , <nidhi.vinaykiya27@...> wrote:
I am using Janusgraph 0.5.2. How can I get rid of log4j vulnerability that 1.2.x has? Will 0.5.2 support log4j 2.17.x [Maybe install the binary of log4j 2.17.x] ? Or do we have any other log4j alternatives that janusgraph 0.5.2 can support? If yes, do we have a document on how that can be integrated with Janusgraph?

Join janusgraph-users@lists.lfaidata.foundation to automatically receive all group messages.