Is the kafka-connect docker image confluentinc/cp-kafka-connect-base:5.5.0 affected by the log4j vulnerability https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-44228?

Marcos_Carbonell · 13 December 2021 14:24

Hello!

Given the information disclosed last week about the log4j vulnerability we are wondering if our kafka-connect image is affected by it too.

Docker Image: confluentinc/cp-kafka-connect-base:5.5.0

Thanks!

vnadkarni · 14 December 2021 12:59

system · 21 December 2021 13:00

This topic was automatically closed 7 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Is cp-kafka-connect-base image still using confluent forked log4j v1.x? Self-Managed Connectors	1	1566	4 June 2023
Critical security vulnerability code-named “Log4Shell” (tracked as CVE-2021-44228) Managed Connectors	3	3217	21 December 2021
Confluent-community-2.13 log4J vulnerability Kafka Connect	7	2972	2 March 2022
Resolving CVE-2022-48566 and CVE-2023-40217 Kafka Connect	1	963	29 October 2023
Install JDBC SQL Connect & Azure SQL Connect shows error in Docker container logs Kafka Connect	3	2774	7 July 2022