Are H2O.ai products affected by log4shell vulnerability?

95 Views Asked by At

My question is if Open Source H2O-3, Open Source Sparkling Water and Driverless AI are affected by CVE-2021-44228 and CVE-2021-45046.

2

There are 2 best solutions below

0
On BEST ANSWER

H2O.ai has releases/patches upgraded to the latest log4j version 2.17 to address the various vulnerabilities found. Updates are at:

https://www.h2o.ai/security/bulletins/h2o-2021-001/

0
On

H2O.ai is closely tracking the vulnerabilities and publishing updates at https://www.h2o.ai/security/bulletins/h2o-2021-001/.