Build result summary

Details

	Commit	Message	Commit date
daryl herzmann <akrherz@iastate.edu>	5b6b732fda44fbc3c38a7036b1ed7522d9f8b129	Merge pull request #1950 from akrherz/466 Denote Openfire 4.6.6 Release	16 Dec 2021
akrherz <akrherz@iastate.edu>	45c979a0986c457e0e73531b7bf4e048cfbf0b12	Denote Openfire 4.6.6 Release	16 Dec 2021
Guus der Kinderen	f9b650c7c93b541b1a0ffd5ecbd5ddee0a6334aa	OF-2353: Upgrade log4j2 from 2.15.0 to 2.16.0	16 Dec 2021
Guus der Kinderen	6caa5226b3b4fbf472462719df138d97fc6c8e14	OF-2353: Add log4j2.formatMsgNoLookups system property to startup scripts As another mitigation for CVE-2021-4428, add the log4j2.formatMsgNoLookups system property to all Openfire start scripts that we provide.	16 Dec 2021
Guus der Kinderen	9e3ade637f66e357cfa7e4061d7e8eb93024fee1	OF-2353: Disable lookups in log4j2 message converter This adds the {nolookups} directive to the log4j message directive, which disables lookups on another level (CVE-2021-44228). Note that after upgrading to log4j2 2.16.0, this directive will be ignored by log4j2, as the lookup functionality has been removed completely in that version. A message might be logged to that effect when starting up.	16 Dec 2021

Issue		Description	Status
Unknown Issue Type	CVE-2021	Could not obtain issue details from Jira
Unknown Issue Type	OF-2353	Could not obtain issue details from Jira

Artifact	File size
.rpm files	262 MB