Hello @ROVERE Lorenzo ,
Thanks for the question and using MS Q&A platform.
Yes, you are correct. It shows as
Apache Log4j Core 2.17.1, I will reach out to the product team to update the version in the Databricks Release notes.
Note: And for any document changes, you need to leave an feedback at the bottom of the page: Databricks Runtime 10.4 LTS:
Does this runtime version fix the log4j vulnerability?
Yes, fixed in Log4j 2.17.1 version.
As per the repro, I had created cluster with Databricks Runtime Version:
10.4 LTS (includes Apache Spark 3.2.1, Scala 2.12).
Run the above code on the created cluster and it shows as
Apache Log4j Core 2.17.1.
Hope this will help. Please let us know if any further queries.
- Please don't forget to click on or upvote button whenever the information provided helps you. Original posters help the community find answers faster by identifying the correct answer. Here is how
- Want a reminder to come back and check responses? Here is how to subscribe to a notification
- If you are interested in joining the VM program and help shape the future of Q&A: Here is how you can be part of Q&A Volunteer Moderators