CVE-2021-44228 aka log4shell is logstash and/or elasticsearch affected?

Just an FYI; bump log4j version to 2.15.0 by jsvd · Pull Request #13494 · elastic/logstash (github.com) was just merged, so looks like logstash 7.16.1 will contain the new fixed version.

3 Likes