Does Log4j Vulnerability Affect Backdrop ?

May I know if backdrop vulnerable to the Log4shell/Log4j (CVE-2021-44228) in any stage or version or third party plugin found vulnerable to this ? Is there any official statement from backdrop on this ? I need a firm answer on this. Thanks.

Log in or register to post comments

Comments

Backdrop is definitely not vulnerable because of Log4j. Log4j is a Java component; Backdrop doesn't directly use Java, it's written in PHP, HTML, and JavaScript, with a smattering of scripting languages and configurations.

Note: I don't speak officially for Backdrop, but I'm pretty confident about this.

Log in or register to post comments

I'm glad to hear this. Thanks for your affirmation.

Log in or register to post comments

Weekly office hours

Bring your questions to our weekly virtual office hours, every Wednesday. Everyone is welcome.

Recent topics

Prevent Backdrop from sending emails

Posted 16 hours 43 min ago by (Peter.B.Eriksen) in How-To and Troubleshooting

Layout also for /node/add/ forms?

Posted 16 hours 45 min ago by (Peter.B.Eriksen) in How-To and Troubleshooting

Commerce shop system from Drupal

Posted 2 days 9 hours ago by (Peter.B.Eriksen) in How-To and Troubleshooting

Seeing what issues are new

Posted 5 days 11 hours ago by (izmeez) in How-To and Troubleshooting

Facing an error after upgrading Civicrm version from 5.78.3 to 6.5.0

Posted 6 days 17 hours ago by Sudipto Kumar Mitra (sudipto68) in How-To and Troubleshooting

Recent comments

A simple way — use Field Group to create a container for fields https://backdropcms.org/project/field_group and CSS Flex оr Grid to alignment.

Posted 5 hours 32 min ago by (Enthusiast) on:

Layout also for /node/add/ forms?

Yes. The are several ways to do this: Install Mail System and select "Testing" for delivery in admin/config/system/mailsystem Install Maillog / Mail developer...

Posted 8 hours 50 min ago by Alejandro Cremaschi (argiepiano) on:

Prevent Backdrop from sending emails

The short answer is no, you can't theme forms or change their layouts through the UI. There is a ported version of Display Suite, which has a submodule called Display Suite Forms that allows you...

Posted 9 hours 7 min ago by Alejandro Cremaschi (argiepiano) on:

Layout also for /node/add/ forms?

Thanks! I tested PayPal WPS (since I also use it in my Drupal 7 Commerce shop). With the PayPal server SANDBOX mode (no real payment transaction, just simulated). And everything...

Posted 1 day 17 hours ago by (Peter.B.Eriksen) on:

Commerce shop system from Drupal

Peter, I've done an initial port of Commerce PayPal. While I haven't tested it, I think it should work, as the module is not too complex. https://github.com/backdrop-contrib/...

Posted 1 day 18 hours ago by Alejandro Cremaschi (argiepiano) on:

Commerce shop system from Drupal

Log in or register to add new topics