Blog

Azure DevOps 2020 and 2019 (and 2018) patch for log4j vulnerability


17 December, 2021
Jesse Houwing

Jesse Houwing

Azure DevOps can be configured with advanced Code Search. That feature relies on Elastic Search. Depending on the age of your server, JVM version, and Elastic Search version this may result in your setup being vulnerable to CVE-2021-44228. Read my blog post on how to patch Azure DevOps for the log4j vulnerability here.

 

Jesse Houwing

Jesse is a passionate trainer and coach, helping teams improve their productivity and quality all while trying to keep work fun. He is a Professional Scrum Trainer (PST) through Scrum.org, Microsoft Certified Trainer and GitHub Accredited Trainer. Jesse regularly blogs and you'll find him on StackOverflow, he has received the Microsoft Community Contributor Award three years in a row and has been awarded the Microsoft Most Valuable Professional award since 2015. He loves espresso and dark chocolate, travels a lot and takes photos everywhere he goes.

Contact

Let’s discuss how we can support your journey.