KB ID : 115130
Published : Dec. 15, 2021
Created : Dec. 15, 2021
Last Modified : Dec. 16, 2021

If you're still concerned about Log4j, we recommend deleting all Log4j related files from the BDRSuite components installation directory. Remove the below-mentioned files from the installation directory of the following BDRSuite components.

  • BDR Backup server,
  • Offsite DR Server,
  • BDR Client for File Servers/Endpoints/Applications(NetworkBackup Client),
  • BDR Client for VMware/Hyper-V/Windows,
  • Vembu ImageBackup Client,
  • Vembu VMBackup Client,
  • Vembu Integration Service.

Files to be removed,

1) <installation_location>/bin/3rdpartylibs/org.apache.logging.log4j-1.2.17.jar

2) <installation_location>/bin/3rdpartylibs/log4j-1.2.17.jar

Removing the Log4j related files does not affect further backup or recovery operations.

BDRSuite has also developed a utility that identifies the log4j vulnerability in its installation location then removes the vulnerable file.

Note: Make sure all the backups are idle when executing the utility. Running the utility will restart the BDRSuite services, If any backups or restores are in progress, then they will be interrupted. If any backups and restore are in progress, we suggest you wait until it gets completed and then run the utility.

1) Download the vembubdrsuitebugfix.exe from the link below

Download:https://s3.amazonaws.com/vembu-bug-fi...

2) Copy the vembubdrsuitebugfix.exe to the machine where the BDRSuite or any of its components are installed.

3) Execute the vembubdrsuitebugfix.exe by double-clicking it

4) A wizard will appear, click Install to continue.

5) The utility will automatically detect the vulnerable file and remove them automatically. Once completed click on Finish to close the wizard.

edit retag flag offensive close merge delete