We released Axon Ivy 8.0.22
⚠ In this release we updated Apache Log4j2 library that is part of our bundled ElasticSearch to the latest 2.16.0 version to fix CVE-2021-45046 (Log4Shell) vulnerability. For more information see our Log4Shell Blog Entry.
Here is the full list of fixed issues:
- XIVY-7171 - Story - Document deprecated features
- 💣 XIVY-7262 - Bug - CVE-2021-45046: Log4j2 ThreadContext DoS - Update to Log4j2 version 2.16.0
We strongly recommend to install this update release because it fixes security issues!