This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Ruckus Wireless
RUCKUS Self Help |   ASK the Pack
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

[CVE-2021-44228] Apache Log4j2 RCE

dawoon_lee
New Contributor II

‎12-12-2021 05:51 PM

Hello.

Our customer is running a Ruckus SmartZone (sz-100) controller.
The version of the controller is 5.1.1.0.598.


The customer asked if the SmartZone has the following this security vulnerabilities.

** Vulnerability: [CVE-2021-44228] Apache Log4j2 RCE

Thank you for your valuable answers to the above questions.

93 REPLIES 93

Vineet_nejwala
Moderator
Moderator
In response to ludia_it

‎12-20-2021 08:45 PM

@Papa_WiFI

You would need to open a ruckus case for this as this could be validated only from vSZ shell mode.

Best Regards

Vineet 

0 Kudos

Vineet_nejwala
Moderator
Moderator

‎12-20-2021 12:34 AM

@ludia_it @nick_nordberg @michiel_timmers @mark_pledl 
We have updated out KBA and for 6.0 users, we recommended customer to "reload" vSZ instead of "service restart" after KSP is applied which would work correctly. 

Best Regards

vineet

0 Kudos

sven_siersdorfe
New Contributor II
In response to Vineet_nejwala

‎12-20-2021 12:37 AM

@vineet_nejawala 

with a reload it works fine on 6.0

thank you.

0 Kudos

peter_brischett
New Contributor

‎12-20-2021 05:53 PM

Trying the patch on one of the vSZ clusters I manage and it's returning the following error when trying to upload the patch.

Unable to upload the diagnostic/patch script file to the controller. Reason: Unable to process upload, reason : Install script ER10935_fix_log4j_856364.ksp to server failed:failed to decompress the script pack:#[TLV] Decode tlv data
Traceback (most recent call last):
File "/usr/bin/rks-encrypt", line 630, in <module>
main()
File "/usr/bin/rks-encrypt", line 613, in main
opt_decrypt_img(options, headers, env)
File "/usr/bin/rks-encrypt", line 555, in opt_decrypt_img
stdin=_stdin_flag)
File "/usr/bin/rks-encrypt", line 184, in decrypt_image
write_chunk_file(tlv_data, env["rpki_sig"][hash_alg], length_2)
KeyError: 'rpki_sig'

gzip: stdin: unexpected end of file
tar: Child returned status 1
tar: Error is not recoverable: exiting now

Controller Version: 5.2.2.0.1161

The other 20+ clusters I manage have all applied the patch successfully without issue.

Anyone else experienced this issue?

0 Kudos

Vineet_nejwala
Moderator
Moderator
In response to peter_brischett

‎12-20-2021 08:52 PM

@peter_brischetto

Are you still having this issue. Can you please open a Ruckus ticket to isolate and diagnose this issue.

Best Regards

Vineet 

0 Kudos
Copyright © 2025 Khoros, LLC