May I know if backdrop vulnerable to the Log4shell/Log4j (CVE-2021-44228) in any stage or version or third party plugin found vulnerable to this ? Is there any official statement from backdrop on this ? I need a firm answer on this. Thanks.
Recent topics
Posted 18 hours 21 min ago by (izmeez) in How-To and Troubleshooting
Posted 2 days 3 hours ago by (Matt75) in How-To and Troubleshooting
Posted 3 days 23 hours ago by (rt-9988) in How-To and Troubleshooting
Posted 4 days 9 hours ago by (dd123) in How-To and Troubleshooting
Posted 1 week 21 min ago by (Coffee70) in How-To and Troubleshooting
Recent comments
I got confused by this too so I wanted to clarify the last comment here: You need to enable the input filter called: "Convert image captions to figure and figcaption elements" at the...
Image Captions
Hi I added the 2 additional settings in settings.php, did a restart - and the error disappeared! Thanks for the support! (but the issues with the conversion still remain .....
Problem with utf8mb4 Format when importing database
With JQuery, simple and fast. Or put all possible links in one menu, and hide unnecessary with CSS mediaquery.
Different primary menus depending on the viewport size?
I wonder if what is happening here is the default database settings are for utf8mb4 if the database server supports it. In settings.php or settings.local.php if that's where you put your...
Problem with utf8mb4 Format when importing database
I've not done this with a menu before but something similar with different Views presentation blocks for different resolutions (i.e. not just responsive but a different presentation method...
Comments
Backdrop is definitely not vulnerable because of Log4j. Log4j is a Java component; Backdrop doesn't directly use Java, it's written in PHP, HTML, and JavaScript, with a smattering of scripting languages and configurations.
Note: I don't speak officially for Backdrop, but I'm pretty confident about this.
I'm glad to hear this. Thanks for your affirmation.