Skip to content
Snippets Groups Projects
Commit ecbd96be authored by Piotr Parczewski's avatar Piotr Parczewski
Browse files

[Security] Add log4j vulnerability mitigation in Elasticsearch 

Change-Id: I2d4a4fab35771723be82a1c8b98dbe4cc3164f58
parent db789efc
No related branches found
No related tags found
No related merge requests found
Hide whitespace changes
Inline Side-by-side
ansible/roles/elasticsearch/defaults/main.yml
+ 1
1
View file @ ecbd96be
......@@ -38,7 +38,7 @@ elasticsearch_enable_keystone_registration: False
elasticsearch_cluster_name: "kolla_logging"
es_heap_size: "1g"
es_java_opts: "{% if es_heap_size %}-Xms{{ es_heap_size }} -Xmx{{ es_heap_size }}{%endif%}"
es_java_opts: "{% if es_heap_size %}-Xms{{ es_heap_size }} -Xmx{{ es_heap_size }}{%endif%} -Dlog4j2.formatMsgNoLookups=true"
#######################
# Elasticsearch Curator
......
releasenotes/notes/security-log4j-1be047799f8e590a.yaml 0 → 100644
+ 5
0
View file @ ecbd96be
---
security:
- |
Adds mitigation for the Apache Log4j2 Remote Code Execution (RCE)
Vulnerability in Elasticsearch - CVE-2021-44228.
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment