Closed TheSamDickey closed 2 years ago
Feels like the media is manipulating you into a stress induced coma
I was looking through a thread about whether Nextcloud has a Log4j vulnerability
no log4js here, cant vouch for your hosting environment tho ofcourse
Because this is a public facing service I host, I would like to know if it uses Log4j in any way. If it does, has it been patched appropriately?
I was looking through a thread about whether Nextcloud has a Log4j vulnerability, and many people laughed at the question. Because Nextcloud uses PHP, people thought it was safe. As it turns out, the default version of Apache the official Nextcloud Docker image uses is actually vulnerable.
I know this isn't a typical bug report, but this truly is 'the sky is falling' security risk. I'm taking as many precautions as possible and am leaving no stone unturned.