Vendor Patch ExistsVendor Resources
| Resource | Link |
|---|---|
| Update for Apache Log4j2 Issue (CVE-2021-44228) | https://aws.amazon.com/security/security-bulletins/AWS-2021-006/ |
Community Resources
| Resource | Link |
|---|---|
| Update for Apache Log4j2 Issue (CVE-2021-44228) | https://aws.amazon.com/security/security-bulletins/AWS-2021-006/ |
Community Notes
| Source | Note |
|---|---|
| NCSC-NL | CVE-2021-4104: Not vuln ; CVE-2021-44228: Fix |
| NCSC-NL | Amazon SNS systems that serve customer traffic are patched against the Log4j2 issue. We are working to apply the Log4j2 patch to sub-systems that operate separately from SNS’s systems that serve customer traffic |
| CISAGov | Amazon SNS systems that serve customer traffic are patched against the Log4j2 issue. We are working to apply the Log4j2 patch to sub-systems that operate separately from SNS’s systems that serve customer traffic |
| CISAGov | Last Update: 12/14/2021 |
Sources
| Date | Attribution | Description |
|---|---|---|
| 2021-12-31 9:06:53 | NCSC-NL | Updated vendorPatchExists. Updated community note. Updated community link Update for Apache Log4j2 Issue (CVE-2021-44228). Updated community note. |
| 2021-12-30 21:31:50 | CISAGov | Updated vendor link Update for Apache Log4j2 Issue (CVE-2021-44228). Updated community note. Updated community note. |