Oracle has published a security advisory to address critical vulnerabilities which may affect multiple products using the Apache Log4j logging utility. It is recommended that you take the necessary precautions by ensuring your products are always updated.
For more information on this update, you can follow this URL:
https://www.oracle.com/security-alerts/alert-cve-2021-44228.html
The Guyana National CIRT recommends that users and administrators review this update and apply it where necessary.
PDF Download: Oracle Security Advisory.pdf
References
Oracle security advisory (22nd December 2021). Retrieved from Canadian Centre for Cyber Security.
https://www.cyber.gc.ca/en/alerts/oracle-security-advisory-4
Oracle security advisory (10th December 2021). Retrieved from Oracle.
https://www.oracle.com/security-alerts/alert-cve-2021-44228.html