Security Notice - Apache Log4j2

Security Update for Matrixstore Customers

Security Notice – Apache Log4j2

Security Notice – Apache Log4j2 https://object-matrix.com/wp-content/uploads/2021/12/SecurityUpdateDec2021-TwitterLinkedInWebsiteBlogPost-1024x576.jpg 1024 576 Object Matrix Object Matrix //object-matrix.com/wp-content/uploads/2020/12/OM-MenuLogo.png 14 December 2021 14 December 2021

The following information provides a security update for all MatrixStore customers regarding Apache Log4j2.

In December 2021, a remote code execution vulnerability in Apache Log4j2 was disclosed (CVE-2021-44228). It affects versions 2.0-beta9 to 2.14.1. Exploiting this vulnerability allows attackers to remotely execute arbitrary code on the compromised system.

As with many applications and internet services, Log4j is also embedded within some Object Matrix products. However, we are happy to report that Object Matrix does not use any of the Log4j versions affected by this CVE in any of our products and services. As a result, none of our products or services are impacted by this exploit and no action or patch is needed.

If you have any questions or concerns, please don’t hesitate to get in touch.

About Object Matrix

Object Matrix is the award winning software company that pioneered object storage and the modernisation of media archives. It exists to enable global collaboration, increase operational efficiencies and empower creativity through deployment of MatrixStore, the on-prem, hybrid and cloud storage platform. Their unified deployment approach ensures content spans on-prem and cloud storage whilst their focus on the media industry gives them a deep understanding of the challenges organisations face when protecting, processing and sharing video content. Customers include: BBC, Orange, France Televisions, BT, HBO, TV Globo, MSG-N and NBC Universal.

Cookie	Duration	Description
AWSELB	session	This cookie is associated with Amazon Web Services and is used for managing sticky sessions across production servers.
cookielawinfo-checkbox-advertisement	1 year	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Advertisement".
cookielawinfo-checkbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.

Cookie	Duration	Description
__cf_bm	30 minutes	This cookie is set by CloudFlare. The cookie is used to support Cloudflare Bot Management.
bcookie	2 years	This cookie is set by linkedIn. The purpose of the cookie is to enable LinkedIn functionalities on the page.
lang	session	This cookie is used to store the language preferences of a user to serve up content in that stored language the next time user visit the website.
lidc	1 day	This cookie is set by LinkedIn and used for routing.
PBSECURESUSID	session	This cookie is set by the provider Podbean. This is a session cookie used to verify that the users are on secure sessions. It helps iin implementing audio files on the website.

Cookie	Duration	Description
_ga	2 years	This cookie is installed by Google Analytics. The cookie is used to calculate visitor, session, campaign data and keep track of site usage for the site's analytics report. The cookies store information anonymously and assign a randomly generated number to identify unique visitors.
_gat_gtag_UA_115024694_1	1 minute	This cookie is set by Google and is used to distinguish users.
_gid	1 day	This cookie is installed by Google Analytics. The cookie is used to store information of how visitors use a website and helps in creating an analytics report of how the website is doing. The data collected including the number visitors, the source where they have come from, and the pages visted in an anonymous form.
_omappvp	11 years	The cookie is set to identify new vs returning users. The cookie is used in conjunction with _omappvs cookie to determine whether a user is new or returning.
_omappvs	20 minutes	The cookie is used to in conjunction with the _omappvp cookies. If the cookies are set, the user is a returning user. If neither of the cookies are set, the user is a new user.
CONSENT	16 years 4 months	These cookies are set via embedded youtube-videos. They register anonymous statistical data on for example how many times the video is displayed and what settings are used for playback.No sensitive data is collected unless you log in to your google account, in that case your choices are linked with your account, for example if you click “like” on a video.
uvc	1 year 1 month	The cookie is set by addthis.com to determine the usage of Addthis.com service.

Cookie	Duration	Description
bscookie	2 years	This cookie is a browser ID cookie set by Linked share Buttons and ad tags.
IDE	1 year 24 days	Used by Google DoubleClick and stores information about how the user uses the website and any other advertisement before visiting the website. This is used to present users with ads that are relevant to them according to the user profile.
loc	1 year 1 month	This cookie is set by Addthis. This is a geolocation cookie to understand where the users sharing the information are located.
test_cookie	15 minutes	This cookie is set by doubleclick.net. The purpose of the cookie is to determine if the user's browser supports cookies.
VISITOR_INFO1_LIVE	5 months 27 days	This cookie is set by Youtube. Used to track the information of the embedded YouTube videos on a website.
YSC	session	This cookies is set by Youtube and is used to track the views of embedded videos.
yt-remote-connected-devices	never	These cookies are set via embedded youtube-videos.
yt-remote-device-id	never	These cookies are set via embedded youtube-videos.

Cookie	Duration	Description
_MIXHLEuC	1 day	No description
AnalyticsSyncHistory	1 month	No description
at-rand	never	No description available.
et_bloom_optin_optin_1_sendinblue_25_imp	1 year	No description
FhaOkRrHfBMui	1 day	No description
GBjIJorpgQ-	1 day	No description
li_gc	2 years	No description
thirdPartyCookiesEnabled	1 day	No description available.
UserMatchHistory	1 month	Linkedin - Used to track visitors on multiple websites, in order to present relevant advertisement based on the visitor's preferences.
X-Mapping-fmfijfol	session	No description available.
YvprZPH_	1 day	No description

Security Notice – Apache Log4j2

Security Notice – Apache Log4j2

About Object Matrix

Enjoying the post? Share this story!

Get in Touch

Keeping Content Close – Wherever it’s Stored

HPA Tech Retreat 2022 – See you in the Innovation Zone!

All done! You'll now get the latest OM updates!