Caddy Community

Apache Log4j Remote Code Execution Vulnerability

Scott_Thomson (Scott Thomson) December 13, 2021, 4:14pm 1

1. Caddy version (`caddy version`):

2. How I run Caddy:

a. System environment:

b. Command:

c. Service/unit/compose file:

d. My complete Caddyfile or JSON config:

3. The problem I’m having:

We are using Caddy reverse proxy with Docker. Is Caddy or Docker vulnerable? If so is there a patch?

Thanks.

4. Error messages and/or full log output:

5. What I already tried:

6. Links to relevant resources:

francislavoie (Francis Lavoie) December 13, 2021, 5:03pm 2

No. Caddy and Docker are both written in Go. No Java.

1 Like

system (system) Closed January 12, 2022, 4:14pm 3

This topic was automatically closed after 30 days. New replies are no longer allowed.