Is it possible to delete log4j.jar from the /usr/share/java directory on RHEL7/Tomcat7, in order to eliminate the Log4J vulnerability?

java

asked 2022-09-29 11:00:00 +0000

woof
21 ●1 ●1

edit retag flag offensive close merge delete

add a comment

1 Answer

Sort by » oldest newest most voted

answered 2021-07-09 09:00:00 +0000

pufferfish
41 ●3 ●2

Deleting log4j.jar from the /usr/share/java directory may not completely eliminate the Log4J vulnerability as there may be other applications or libraries that may depend on it. It is recommended to apply the latest Log4j patch provided by your Red Hat package repository or vendor, and also check for any other applications or libraries that may be affected by this vulnerability. Additionally, consider implementing security controls and regular security assessment to mitigate the risk of potential threats.

edit flag offensive delete link

add a comment

Your Answer

Please start posting anonymously - your entry will be published after you log in or create a new account. This space is reserved only for answers. If you would like to engage in a discussion, please instead post a comment under the question or an answer that you would like to discuss

Add Answer

Question Tools

Stats

Asked: 2022-09-29 11:00:00 +0000

Seen: 8 times

Last updated: Jul 09 '21

Is it possible to delete log4j.jar from the /usr/share/java directory on RHEL7/Tomcat7, in order to eliminate the Log4J vulnerability? edit

1 Answer