| Patch | Description | Author | Forwarded | Bugs | Origin | Last update |
|---|---|---|---|---|---|---|
| build_fix.patch | Enables the compilation of the JMX classes and tweaks the Javadoc. | Thomas Koch <thomas@koch.ro> | no | |||
| remove-activation-framework-dependency.patch | Remove the dependency on the Activation Framework (integrated to Java 6 and later) | Emmanuel Bourg | no | |||
| add-missing-classes.patch | Add missing classes to jar | Hilko Bengen <bengen@debian.org> | no | |||
| CVE-2019-17571.patch | CVE-2019-17571 | Markus Koschany <apo@debian.org> | no | debian | https://src.fedoraproject.org/rpms/log4j12/c/d4c817c458d69dcc629a7271999d178b0dcb7c74?branch=master | 2020-01-11 |
| disable-examples.patch | No longer build the examples to avoid an error with OpenJDK 17 | Emmanuel Bourg <ebourg@apache.org> | not-needed | debian | ||
| CVE-2022-23305.patch | CVE-2022-23305 This change mitigates the impact of CVE-2022-23305. Apache Log4j 1.2 has reached end of life in August 2015. No further updates will be available. |
Markus Koschany <apo@debian.org> | no | debian | 2022-01-30 | |
| CVE-2022-23302.patch | CVE-2022-23302 This change mitigates the impact of CVE-2022-23302. Apache Log4j 1.2 has reached end of life in August 2015. No further updates will be available. |
Markus Koschany <apo@debian.org> | no | debian | 2022-01-30 | |
| CVE-2022-23307.patch | CVE-2022-23307 This change mitigates the impact of CVE-2022-23307. Apache Log4j 1.2 has reached end of life in August 2015. No further updates will be available. |
Markus Koschany <apo@debian.org> | no | debian | 2022-01-30 | |
| CVE-2021-4104.patch | CVE-2021-4104 This change mitigates the impact of CVE-2021-4104. Apache Log4j 1.2 has reached end of life in August 2015. No further updates will be available. |
Markus Koschany <apo@debian.org> | no | debian | 2022-01-30 |