May I know if backdrop vulnerable to the Log4shell/Log4j (CVE-2021-44228) in any stage or version or third party plugin found vulnerable to this ? Is there any official statement from backdrop on this ? I need a firm answer on this. Thanks.
Weekly office hours
Bring your questions to our weekly virtual office hours, every Wednesday. Everyone is welcome.
Recent topics
Posted 17 hours 49 min ago by (echo) in How-To and Troubleshooting
Posted 6 days 8 hours ago by (Mike Kettle) in How-To and Troubleshooting
Posted 6 days 21 hours ago by Dragon Drop (drop) in Weekly Meetings
Posted 1 week 1 day ago by (FooBar) in Installation Questions
Posted 1 week 1 day ago by Martin Price (yorkshirepudding) in Weekly Meetings
Recent comments
Thank you :-)
Why is php 8 required for latest Better Formats update 1.x-1.1.0 ?
The requirement was introduced for one fix to a `uasort` callback. I believe we can avoid that and remove the requirement. https://github.com/backdrop-contrib/better_formats/issues/13
Why is php 8 required for latest Better Formats update 1.x-1.1.0 ?
It's unclear why this was added. The same thing was added to the D7 module, but in D7 they have two concurrent versions released earlier today, 1.0 and 2.0. Only 2.0 requires php 8. I've pinged the...
Why is php 8 required for latest Better Formats update 1.x-1.1.0 ?
Ah! Just as I'd imported 132 report pages. TBH, today, I'd got to the stage where I don't want to spend much more time testing/configuring/etc plug-in(s) for a one time import. OK for a bigger...
Import Existing Site using Feeds
I see... I've never used Feeds Tamper before, but reading from the description it may be able to modify those date fields before saving.
Comments
Backdrop is definitely not vulnerable because of Log4j. Log4j is a Java component; Backdrop doesn't directly use Java, it's written in PHP, HTML, and JavaScript, with a smattering of scripting languages and configurations.
Note: I don't speak officially for Backdrop, but I'm pretty confident about this.
I'm glad to hear this. Thanks for your affirmation.