Y Soft has released the Log4jPatcher tool. 

This tool fully mitigates the
following log4j security vulnerabilities:

* CVE-2021-44228
* CVE-2021-45046

No other mitigation steps are required after running this tool on your existing
YSoft SafeQ6 installation.

The Log4jParser is a command line utility and can be run from CMD.EXE, Windows
Terminal or PowerShell. The tool takes SafeQ installation directory as an
argument, scans for all versions of log4j library and fixes them. The tool works
correctly on nested .jar and .war archives.

The tool uses techniques recommended in:
https://nvd.nist.gov/vuln/detail/CVE-2021-44228 and
https://www.cve.org/CVERecord?id=CVE-2021-45046.



To patch your SafeQ6 installation, simply download the tool and run it
as is, without any arguments. You need to do this on all SafeQ servers.

More examples:
(Without any arguments, it defaults to SafeQ installation root stored in Windows
Registry or C:\SafeQ6.)
.\Log4jPatcher


To provide alternate SafeQ installation root path, use the -p argument:
.\Log4jPatcher -p C:\SafeQ6

To test the patching process without actually patching any libraries, you can
invoke the tool with the --dry-run argument:
.\Log4jPatcher -p C:\SafeQ6 --dry-run

The Log4jPatcher tool supports restarting all impacted YSoft SafeQ services
automatically with the --manage-services argument:
.\Log4jPatcher -p C:\SafeQ6 --manage-services

To get list of all supported command line options, simply run:
.\Log4jPatcher --help

# How does the tool work?
The tool deletes the vulnerable class (JndiLookup.class) from all log4j jars that contain it.
Tool works on nested jars. 

It it safe to run the tool multiple times against one
installation.

For more information on additional mitigation options, you can refer to:
https://portal.ysoft.com/news/security-check

# Known Issues or Limitations
When using the --manage-services some services might take more time when
shutting down. If any service gets stuck in the "Service Stopping" state, you
can use Windows Task Manager to kill the relevant service process. The tool with
then proceed automatically.
