telekom-security/tpotce
1
0
Fork 0
mirror of https://github.com/telekom-security/tpotce.git synced 2025-07-02 01:27:27 -04:00
Code Issues Packages Projects Releases Wiki Activity

ELK 7.16.1 fixes log4j vulns.

Browse Source
This commit is contained in:
t3chn0m4g3
2021-12-13 15:59:48 +00:00
parent b4c1805551
commit a98b447556
4 changed files with 8 additions and 12 deletions
Download Patch File Download Diff File Expand all files Collapse all files

7
docker/elk/logstash/Dockerfile
View File

@ -1,7 +1,7 @@
FROM alpine:3.14
#
# VARS
ENV LS_VER=7.15.1
ENV LS_VER=7.16.1
# Include dist
ADD dist/ /root/dist/
#
@ -14,8 +14,7 @@ RUN apk -U --no-cache add \
curl \
libc6-compat \
libzmq \
nss \
zip && \
nss && \
apk add --no-cache -X http://dl-cdn.alpinelinux.org/alpine/edge/community openjdk16-jre && \
#
# Get and install packages
@ -36,8 +35,6 @@ RUN apk -U --no-cache add \
/usr/share/logstash/bin/logstash-plugin install logstash-output-gelf && \
/usr/share/logstash/bin/logstash-plugin install logstash-output-http && \
/usr/share/logstash/bin/logstash-plugin install logstash-output-syslog && \
# Remove log4j (https://discuss.elastic.co/t/apache-log4j2-remote-code-execution-rce-vulnerability-cve-2021-44228-esa-2021-31/291476)
zip -d /usr/share/logstash/logstash-core/lib/jars/log4j-core-2.* org/apache/logging/log4j/core/lookup/JndiLookup.class && \
#
# Add and move files
cd /root/dist/ && \