Skip to main content (Press Enter).
Sign in or Join
Skip auxiliary navigation (Press Enter).
Start a Discussion
Post an Article
User Community
Skip main navigation (Press Enter).
Toggle navigation
Search Options
Home
Top Links
Supported Software
Release Notes
Success Programs
Jama Connect Interchange™
Jama Connect® Deployment Resources
Help Guide Online
Help Guide PDFs
Announcements
Glossary
What's New
Events
Support
Post a question or problem
Welcome to Jama Customer Support
Member-Created Resource Library
Education
Jama Connect® Basics
Jama Connect® Admin
Jama Connect® Features in Five
Solutions by Industry
Register for Live Trainings
Podcasts
Other Topics
Solutions
Product
User Research Group
Product Discussion
Jama Connect® vs. IBM® DOORS® Video Blog Series
System Status
Support
View Only
Community Home
Discussion
15.4K
Library
238
Events
0
Members
620
Back to discussions
Expand all
|
Collapse all
sort by most recent
sort by thread
Log4j
Andrew MacCormack
12-13-2021 04:26
Is JAMA impacted by CVE-2021-44228 on log4j? Are there plans to do an update to fix? ------------------------------ ...
Josh Turpen
12-13-2021 07:44
We understand the recently published security vulnerability in Log4j may be causing concern. We have ...
Andrew MacCormack
12-13-2021 08:35
Appreciate the rapid response! ------------------------------ Andrew MacCormack LumiraDX ------------------------------ ...
Abubakar Karajagi
12-14-2021 02:27
Hello Josh , Any update on this ? ------------------------------ Abubakar Karajagi ------------------------------ ...
Josh Turpen
12-14-2021 14:53
Abubakar, We have updated guidance here: https://community.jamasoftware.com/browse/announcements?AnnouncementKey=97eeed3a-c75c-4363-965b-005538201b3c. ...
1.
Log4j
0
Like
Andrew MacCormack
Posted 12-13-2021 04:26
Edited by Andrew MacCormack 12-13-2021 05:38
Reply
Reply Privately
Options Dropdown
Is JAMA impacted by CVE-2021-44228 on log4j? Are there plans to do an update to fix?
------------------------------
Andrew MacCormack
LumiraDX
------------------------------
2.
RE: Log4j
0
Like
Josh Turpen
Posted 12-13-2021 07:44
Edited by Josh Turpen 12-13-2021 07:44
Reply
Reply Privately
Options Dropdown
We understand the recently published security vulnerability in Log4j may be causing concern. We have no evidence that this exploit has been used against Jama Connect. However, in an abundance of caution our architecture and engineering teams are reviewing our code, dependencies and configurations to ensure that Jama Connect continues to be as secure as possible.
Jama has customers in the cloud and on-premesis, and will update customers directly based on their deployment model if further action is required.
------------------------------
Josh Turpen
Chief Product Officer
------------------------------
Original Message
Original Message:
Sent: 12-13-2021 04:26
From: Andrew MacCormack
Subject: Log4j
Is JAMA impacted by CVE-2021-44228 on log4j? Are there plans to do an update to fix?
------------------------------
Andrew MacCormack
LumiraDX
------------------------------
3.
RE: Log4j
0
Like
Andrew MacCormack
Posted 12-13-2021 08:35
Reply
Reply Privately
Options Dropdown
Appreciate the rapid response!
------------------------------
Andrew MacCormack
LumiraDX
------------------------------
Original Message
Original Message:
Sent: 12-13-2021 07:43
From: Josh Turpen
Subject: Log4j
We understand the recently published security vulnerability in Log4j may be causing concern. We have no evidence that this exploit has been used against Jama Connect. However, in an abundance of caution our architecture and engineering teams are reviewing our code, dependencies and configurations to ensure that Jama Connect continues to be as secure as possible.
Jama has customers in the cloud and on-premesis, and will update customers directly based on their deployment model if further action is required.
------------------------------
Josh Turpen
Chief Product Officer
Original Message:
Sent: 12-13-2021 04:26
From: Andrew MacCormack
Subject: Log4j
Is JAMA impacted by CVE-2021-44228 on log4j? Are there plans to do an update to fix?
------------------------------
Andrew MacCormack
LumiraDX
------------------------------
4.
RE: Log4j
0
Like
Abubakar Karajagi
Posted 12-14-2021 02:27
Edited by Abubakar Karajagi 12-14-2021 03:21
Reply
Reply Privately
Options Dropdown
Hello
Josh ,
Any update on this ?
------------------------------
Abubakar Karajagi
------------------------------
Original Message
Original Message:
Sent: 12-13-2021 07:43
From: Josh Turpen
Subject: Log4j
We understand the recently published security vulnerability in Log4j may be causing concern. We have no evidence that this exploit has been used against Jama Connect. However, in an abundance of caution our architecture and engineering teams are reviewing our code, dependencies and configurations to ensure that Jama Connect continues to be as secure as possible.
Jama has customers in the cloud and on-premesis, and will update customers directly based on their deployment model if further action is required.
------------------------------
Josh Turpen
Chief Product Officer
Original Message:
Sent: 12-13-2021 04:26
From: Andrew MacCormack
Subject: Log4j
Is JAMA impacted by CVE-2021-44228 on log4j? Are there plans to do an update to fix?
------------------------------
Andrew MacCormack
LumiraDX
------------------------------
5.
RE: Log4j
0
Like
Josh Turpen
Posted 12-14-2021 14:53
Reply
Reply Privately
Options Dropdown
Abubakar,
We have updated guidance here:
https://community.jamasoftware.com/browse/announcements?AnnouncementKey=97eeed3a-c75c-4363-965b-005538201b3c.
If you have further questions please submit a ticket and we can review your specific situation.
------------------------------
Josh Turpen
Chief Product Officer
Jama Software
------------------------------
Original Message
Original Message:
Sent: 12-14-2021 02:26
From: Abubakar Karajagi
Subject: Log4j
Hello
Josh ,
Any update on this ?
------------------------------
Abubakar Karajagi
Original Message:
Sent: 12-13-2021 07:43
From: Josh Turpen
Subject: Log4j
We understand the recently published security vulnerability in Log4j may be causing concern. We have no evidence that this exploit has been used against Jama Connect. However, in an abundance of caution our architecture and engineering teams are reviewing our code, dependencies and configurations to ensure that Jama Connect continues to be as secure as possible.
Jama has customers in the cloud and on-premesis, and will update customers directly based on their deployment model if further action is required.
------------------------------
Josh Turpen
Chief Product Officer
Original Message:
Sent: 12-13-2021 04:26
From: Andrew MacCormack
Subject: Log4j
Is JAMA impacted by CVE-2021-44228 on log4j? Are there plans to do an update to fix?
------------------------------
Andrew MacCormack
LumiraDX
------------------------------
×
New Best Answer
This thread already has a best answer. Would you like to mark this message as the new best answer?
© Jama Software
HEADQUARTERS
|
135 SW Taylor Suite 200, Portland, Oregon, 97204
Code of Conduct
Privacy
Security
Legal
Preferences
Contact Us
Powered by Higher Logic