dev-resources.site
for different kinds of informations.
JMeter 5.4.1 fix for Security CVE-2021-44228 issue
Published at
12/15/2021
Categories
jmeter
cve202144228
security
Author
sebiboga
Author
8 person written this
sebiboga
open
In case you installed on Windows, JMeter 5.4.1 from the Github repo: install-jmeter-windows, by now you should know that you are impacted by Security issue CVE-2021-44228 because JMeter is a JAVA application
Here you can find an automatic tool that will fix your vulnerability by downloading the log4j version 2.16
STEPS:
STOP JMeter GUI
download Release v01 from here: https://github.com/sebiboga/jmeter-fix-cve-2021-44228-windows/releases/tag/v01
unzip the Release
double click on cve-2021-44228.bat
In case you didn't installed JMeter in C:\JMeter\apache-jmeter-5.4.1, you'll have to:
- EDIT the bat file and on row 2, update your location where JMeter is installed;
- then update all copy commands with correct destination folder
Here is the batch file:
@echo off
cd C:\JMeter\apache-jmeter-5.4.1\lib
del log4j*.*
md C:\JMeter\cve-2021-4428
powershell -command "Invoke-WebRequest -Uri 'https://dlcdn.apache.org/logging/log4j/2.16.0/apache-log4j-2.16.0-bin.zip' -OutFile 'C:\JMeter\cve-2021-4428\apache-log4j-2.16.0-bin.zip'"
powershell -command "Expand-Archive -Force 'C:\JMeter\cve-2021-4428\apache-log4j-2.16.0-bin.zip' 'C:\JMeter\cve-2021-4428'"
copy C:\JMeter\cve-2021-4428\apache-log4j-2.16.0-bin\log4j-1.2-api-2.16.0.jar C:\JMeter\apache-jmeter-5.4.1\lib\*.*
copy C:\JMeter\cve-2021-4428\apache-log4j-2.16.0-bin\log4j-api-2.16.0.jar C:\JMeter\apache-jmeter-5.4.1\lib\*.*
copy C:\JMeter\cve-2021-4428\apache-log4j-2.16.0-bin\log4j-core-2.16.0.jar C:\JMeter\apache-jmeter-5.4.1\lib\*.*
copy C:\JMeter\cve-2021-4428\apache-log4j-2.16.0-bin\log4j-slf4j-impl-2.16.0.jar C:\JMeter\apache-jmeter-5.4.1\lib\*.*
Have a nice day!
jmeter Article's
30 articles in total
Performance Testing of a medical staffing services web application using JMeter
read article
Distributed Load Testing with JMeter in Testkube
read article
JMeter vs LoadRunner — Which Tool is Right for You?
read article
10 Best Functional Testing Tools for 2024
read article
7 Best JMeter Alternative
read article
Azure DevOps | Running JMeter Test Collection using JMeter Docker Image
read article
peviitor.ro are si locurile de munca de pe ANOFM
read article
Stress Testing Your Rails Application Using JMeter
read article
JMeter-Dynamic Load Testing of Restful APIs
read article
Install JMeter on Mac (Apple Silicon M1,M2,M3... processor)
read article
How to optimise JMeter for performance tests
read article
Jmeter 테스트
read article
Exploring JMeter: A Simple Guide to Its Basic Components
read article
Controllers in JMeter!!
read article
Mastering JSON Extraction in Apache JMeter for Effective API Testing
read article
Unlocking Cosmos DB Potential: Testing API Performance with JMeter!!
read article
Guide to Handling Variables in JMeter
read article
Hashing Passwords using the md5() Method in Groovy and Using it as a Parameter in JMeter
read article
How to use CSV file for parameterization in JMeter
read article
Installing Apache JMeter using Homebrew
read article
Thread Group in Jmeter: Understanding its Components and Use Cases
read article
Loadtest Websocket Server
read article
Automatizando a criação de requisições no JMeter utilizando Postman
read article
Benefits of using JMeter for Performance Testing
read article
Discover issues with performance testing
read article
How fix Jmeter on a Mac ? Could not initialize class org.apache.jmeter.gui.util.FileDialoger
read article
Jmeter:- How to Send multiple request concurrently/Sequentially in "Jmeter" with different set of values for each request?
read article
JMeter Interview Questions
read article
Deploy JMeter on AWS using Terraform
read article
JMeter 5.4.1 fix for Security CVE-2021-44228 issue
currently reading
Featured ones: