Hi Pipriye,

Syslog-ng is not using apache struts in any way, so it is not affected by this vulnerability.

Balázs

On Thu, Dec 14, 2023, 08:14 Mayekar, PrachiX <prachix.mayekar@intel.com> wrote:

Hi Team,

Can you please confirm whether Syslog is affected by this vulnerability:

Critical Severity Security Advisory: Apache Struts Vulnerability CVE-2023-50164

Thanks & Regards,

Prachi Mayekar

ITI-Network Services

A Contingent Worker at Intel

For assistance, please visit us at https://it.intel.com

______________________________________________________________________________
Member info: https://lists.balabit.hu/mailman/listinfo/syslog-ng
Documentation: http://www.balabit.com/support/documentation/?product=syslog-ng
FAQ: http://www.balabit.com/wiki/syslog-ng-faq