QID 354369

Date Published: 2022-12-27

QID 354369: Amazon Linux Security Advisory for log4j : ALAS2022-2022-225

Amazon has released a security update for log4j to fix the vulnerabilities. Affected Product:Amazon Linux 2022

Successful exploitation of this vulnerability could lead to a securitybreach or could affect integrity, availability, and confidentiality.

  • CVSS V3 rated as Critical - 10 severity.
  • CVSS V2 rated as Critical - 9.3 severity.
  • Solution
    Please refer to Amazon advisory: ALAS-2022-225 for affected packages and patching details, or update with your package manager.
    Vendor References

    CVEs related to QID 354369

    Software Advisories
    Advisory ID Software Component Link
    ALAS-2022-225 amazon linux 2022 URL Logo alas.aws.amazon.com/AL2022/ALAS-2022-225.html