- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Hello is anybody aware if we have in all intel server mainboards using a bmc interface a problem with the Java LOG4J weakness?
Link Copied
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Hello MASTEROFTHEHOUSE,
Thank you for joining the community.
Intel's security teams are aware of this issue and are in the process of investigating the impact of the Apache log4j security vulnerability on Intel products/software.
As with all security vulnerabilities, this is being treated as a high priority within Intel and Intel will provide updates as our investigation progresses.
Regards
Paul R.
Intel Customer Support Technician
For firmware updates and troubleshooting tips, visit:
https://intel.com/support/serverbios
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
[WAG-Ticket#5966177] Intel BMC Log4J
"I got a confirmation from BMC team that we don’t use Log4j module in our BMC. So it’s not affected."
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Hello MASTEROFTHEHOUSE,
We are currently investigating your inquiry on our side, can you please share with us where you got that information from?
Regards
Paul R.
Intel Customer Support Technician
For firmware updates and troubleshooting tips, visit:
https://intel.com/support/serverbios
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
We received this information from a german manufacturer [Wortmann.de] of server systems which use the intel server mainboards in their systems. The information is directly out of their server support helpline and they got it from Intel.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Hello MASTEROFTHEHOUSE,
Thank you for the information provided, we are making an internal investigation so I will add that information and I will get back to you with the most accurate information.
Regards
Paul R.
Intel Customer Support Technician
For firmware updates and troubleshooting tips, visit:
https://intel.com/support/serverbios
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Hello MASTEROFTHEHOUSE,
Thank you very much for your patience
Intel continues to investigate the impact of the Apache log4j security vulnerability (CVE-2021-44228 and CVE-2021-45046, cve-2021-45105) on our product portfolio. Intel has published INTEL-SA-00646 that lists the status of affected products. This advisory will be updated daily as new affected products are discovered and patches are released to address this vulnerability
You can find the INTEL-SA-00646 here:
Please let us know if there is anything else that we can do for you. If I do not hear from you I will follow up in 2 business days.
Regards
Paul R.
Intel Customer Support Technician
For firmware updates and troubleshooting tips, visit:
https://intel.com/support/serverbios
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Hello MASTEROFTHEHOUSE,
I hope you are doing great, we have not heard back from you, we will proceed to mark this thread as close, you can reopen it by replying back to this thread.
Thank you for choosing Intel.
Regards
Paul R.
Intel Customer Support Technician
For firmware updates and troubleshooting tips, visit:
https://intel.com/support/serverbios
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page