https://community.databricks.com/t5/data-engineering/log4j-vulnerability-action-plan-for-clients/m-p/33332#M24346 <P>Hi @pawelmitrus​&nbsp;Please go through the<A href="https://databricks.com/blog/2021/12/13/log4j2-vulnerability-cve-2021-44228-research-and-assessment.html" alt="https://databricks.com/blog/2021/12/13/log4j2-vulnerability-cve-2021-44228-research-and-assessment.html" target="_blank">&nbsp;blog</A>&nbsp;for further information on the Apache Log4J Vulnerability issue.</P> Tue, 14 Dec 2021 10:53:47 GMT Prabakar 2021-12-14T10:53:47Z https://community.databricks.com/t5/data-engineering/log4j-vulnerability-action-plan-for-clients/m-p/33330#M24344 <P>I'm looking for some information regarding log4j vulnerability&nbsp;- if any databricks runtime should be changed manually by the client or when specific update will be applied.</P><P></P><P>I know I can go through the docs by myself, finding out which log4j library is used in runtimes (and I did), but I'm wondering if there will be any note centrally released/announced?</P><P></P><P>EDIT: it's not only with regarding to databricks runtime, but also to API calls to Databricks API.</P> Mon, 13 Dec 2021 09:54:27 GMT https://community.databricks.com/t5/data-engineering/log4j-vulnerability-action-plan-for-clients/m-p/33330#M24344 pawelmitrus 2021-12-13T09:54:27Z https://community.databricks.com/t5/data-engineering/log4j-vulnerability-action-plan-for-clients/m-p/33331#M24345 <P>These topics will give you an answer (especially the first one which is answered by Databricks)</P><P><A href="https://community.databricks.com/s/feed/0D53f00001YOOVxCAP" alt="https://community.databricks.com/s/feed/0D53f00001YOOVxCAP" target="_blank">https://community.databricks.com/s/feed/0D53f00001YOOVxCAP</A></P><P><A href="https://community.databricks.com/s/feed/0D53f00001Y5MhTCAV" alt="https://community.databricks.com/s/feed/0D53f00001Y5MhTCAV" target="_blank">https://community.databricks.com/s/feed/0D53f00001Y5MhTCAV</A></P> Mon, 13 Dec 2021 10:06:17 GMT https://community.databricks.com/t5/data-engineering/log4j-vulnerability-action-plan-for-clients/m-p/33331#M24345 -werners- 2021-12-13T10:06:17Z https://community.databricks.com/t5/data-engineering/log4j-vulnerability-action-plan-for-clients/m-p/33332#M24346 <P>Hi @pawelmitrus​&nbsp;Please go through the<A href="https://databricks.com/blog/2021/12/13/log4j2-vulnerability-cve-2021-44228-research-and-assessment.html" alt="https://databricks.com/blog/2021/12/13/log4j2-vulnerability-cve-2021-44228-research-and-assessment.html" target="_blank">&nbsp;blog</A>&nbsp;for further information on the Apache Log4J Vulnerability issue.</P> Tue, 14 Dec 2021 10:53:47 GMT https://community.databricks.com/t5/data-engineering/log4j-vulnerability-action-plan-for-clients/m-p/33332#M24346 Prabakar 2021-12-14T10:53:47Z https://community.databricks.com/t5/data-engineering/log4j-vulnerability-action-plan-for-clients/m-p/33333#M24347 <P>Thanks for sharing such important&nbsp;facts. I got the<A href="https://targetmanpowersolutions.com/" alt="https://targetmanpowersolutions.com/" target="_blank"><B> best security service provider</B></A> website on the internet. They are excellence in the field of security.&nbsp; </P> Mon, 14 Nov 2022 12:33:37 GMT https://community.databricks.com/t5/data-engineering/log4j-vulnerability-action-plan-for-clients/m-p/33333#M24347 Mr_Srinivasa 2022-11-14T12:33:37Z