Premium Content


This content is available if you have a software support plan or current system warranty. To request access to this content, please submit a support request here.

Resolving Apache Log4j Security Vulnerabilities on AWS EC2 instances

Resolution comes from making sure THE LATEST version of OpenJDK (build 1.8.0_312-b07) is installed on the server and no older version.


First, log into the AWS server. 

Either use PUTTY or the AWS Connect console to get on the server.


Second find out what version of JAVA is running

java -version

version "1.8.0_252"

OpenJDK Runtime Environment (build 1.8.0_252-b09)

OpenJDK 64-Bit Server VM (build 25.252-b09, mixed mode)


Third, upgrade the version

sudo yum install java-1.8.0

and answer 'y' to the prompt 


Then, try to remove any older (v1.0.7) version

sudo yum remove java-1.7.0-openjdk


Finally, reboot the server

(NOTE: We are not sure this step is needed, but it shouldn't hurt. If you think it will hurt, try skipping this step)


That's it!

Did you find it helpful? Yes No

Send feedback
Sorry we couldn't be helpful. Help us improve this article with your feedback.