Azure DevOps 2020 and 2019 (and 2018) patch for log4j vulnerability

17 Dec, 2021
Xebia Background Header Wave

Azure DevOps can be configured with advanced Code Search. That feature relies on Elastic Search. Depending on the age of your server, JVM version, and Elastic Search version this may result in your setup being vulnerable to CVE-2021-44228. Read my blog post on how to patch Azure DevOps for the log4j vulnerability here.


Jesse Houwing
Jesse is a passionate trainer and coach, helping teams improve their productivity and quality all while trying to keep work fun. He is a Professional Scrum Trainer (PST) through, Microsoft Certified Trainer and GitHub Accredited Trainer. Jesse regularly blogs and you'll find him on StackOverflow, he has received the Microsoft Community Contributor Award three years in a row and has been awarded the Microsoft Most Valuable Professional award since 2015. He loves espresso and dark chocolate, travels a lot and takes photos everywhere he goes.

Get in touch with us to learn more about the subject and related solutions

Explore related posts