CreaftBlock servers are affected by the critial security issue CVE-2021-44228! 🚨
Therefore the forge version should be updated immideatly to at least build 1.12.2-14.23.5.2856 and a patched modpack version should be released.
Till this is fixed all CraftBlock servers are exposed to remote code execution!
As temporary workarround (till this issue is resolved) please add -Dlog4j2.formatMsgNoLookups=true as sever startup argument.1.12.2 might have a too old log4j version for this to work
TheKingDave
commented
2 years ago
CreaftBlock servers are affected by the critial security issue CVE-2021-44228! 🚨
Therefore the forge version should be updated immideatly to at least build
1.12.2-14.23.5.2856and a patched modpack version should be released.Till this is fixed all CraftBlock servers are exposed to remote code execution!
As temporary workarround (till this issue is resolved) please add1.12.2 might have a too old log4j version for this to work-Dlog4j2.formatMsgNoLookups=trueas sever startup argument.