Patch release description
CVE-2021-45046 - How to patch
- Under <install_root>, locate all the occurrences of log4j-core-*.jar. Note that there could be multiple instances, found in different locations.
- Replace with the attached jar file. No need to rename the file. Be sure that the filename correlates with the attached file in this article. IE: log4j-core-2.14.0.jar should be replaced with log4j-core-2.14.0_CVE-2021-45046.jar
- System needs restarting
Note that installing new features may require additional log4j patching described above.