Is Altair 2021.1 and Altair 2022.3 vulnerable to log4j?

Peter Morgan

According to:

https://connect.altair.com/CP/security-info.html?type=nonvulnerable&owner=Altair

Altair HW 2021.1 and older are listed as NOT VULNERABLE to log4j vulnerabilities.

but according to:

https://connect.altair.com/CP/security-info.html?type=vulnerable&owner=Altair

Altair HW 2021.2 is VULNERABLE is vulnerable to log4j vulnerabilities.

Is this only because 2021.1 is obsolete, or is it for other reasons?

Chayan

The versions of software tagged are based on the version of library that was included with the installation. Please follow the instructions on the page you identified, to patch your version of the software. And if you have the option, pls use the latest version of our software, where you dont have to worry about this.