eMagiz Runtime - 5.0.4

Last modified by Erik Bakker on 2023/01/23 13:55

Fourth maintenance release in the eMagiz 5.0.x line. This release fixes Log4J security vulnerabilities CVE-2021-44228 and CVE-2021-45046.

Find out more in our Release blog.

Bug Fixes

Updated OPS4J Pax Logging version 1.10.1 to version 1.11.11. Internally this uses Apache Log4j 2, which is updated from version 2.8.2 to 2.16.0 in this release. This fixed the following two security vulnerabilities:
- CVE-2021-44228 (CVSS score 10.0 - Critical)
- CVE-2021-45046 (CVSS score 3.7 - Low)