Yuxing Wu

Downloads: Liferay Portal 7.3 GA8: Patch | Readme All vulnerabilities fixed in these patches have already been fixed in Liferay Portal 7.4 GA5. Please refer to the readme file for a list of issues addressed in each patch. For more information on working with patches, please see Patching Liferay Portal . Thanks to Arun Das and Dominik Marks, binary builds of the patches are available: ...

Hello all, The easiest thing you can do to mitigate the recent vulnerabilities in Log4j is to set the JVM parameter -Dlog4j2.formatMsgNoLookups=true. While this solution is not perfect, it should provide sufficient protection given how Log4j is used in Liferay Portal. However, based on Log4j's newest recommendation to mitigate by removing the JndiLookup class, the Community Security Team...

Downloads: Liferay Portal 7.2 GA2: Patch | Readme All vulnerabilities fixed in these patches have already been fixed in Liferay Portal 7.3 GA8 and 7.4 GA3. Please refer to the readme file for a list of issues addressed in each patch. For more information on working with patches, please see Patching Liferay Portal . Thanks to Arun Das, binary builds of the patches are available: From...

Downloads:Liferay Portal 7.2 GA2: Patch | ReadmeAll vulnerabilities fixed in these patches have already been fixed in Liferay Portal 7.3 GA7. Please refer to the readme file for a list of issues addressed in each patch. For more information on working with patches, please see Patching Liferay Portal .Thanks to Arun Das and Dominik Marks, binary builds of the patches are available:From Arun,...

Downloads: Liferay Portal 7.1 GA4: Patch | Readme Liferay Portal 7.2 GA2: Patch | Readme All vulnerabilities fixed in these patches have already been fixed in Liferay Portal 7.3 GA5. Please refer to the readme file for a list of issues addressed in each patch. For more information on working with patches, please see Patching Liferay Portal . Thanks to Arun Das,...

I just want to give everyone a heads up and let you know that the Community Security Team will be releasing a new community security patch on September 1 for Liferay Portal 7.2.1 and 7.1.3. We hope this notice will give you some time to prepare if you and your organization need a bit of time to prepare.

Downloads: Liferay Portal 7.1 GA4: Patch | Readme Liferay Portal 7.2 GA2: Patch | Readme All vulnerabilities fixed in these patches have already been fixed in Liferay Portal 7.3 GA3. Please refer to the readme file for a list of issues addressed in each patch. For more information on working with patches, please see Patching Liferay Portal .