Log4j Patch for CVE-2021-45046

Update 2021-12-22: OpenSearch 1.2.3 is now available - please see Log4j Patch for CVE-2021-45105

2021-12-20: OpenSearch 1.2.3 is in progress which addresses CVE-2021-45105.

2021-12-16: OpenSearch 1.2.2 is now available

As previously tracked in Log4j Patch for CVE-2021-44228 - CVE-2021-45046 was issued shortly following the release of OpenSearch 1.2.1. This new CVE advises upgrading from Log4j 2.15.0 (used in OpenSearch 1.2.1) to Log4j 2.16.0.

Updated Logstash OSS with OpenSearch Output Plugin now available as well

All users should upgrade their OpenSearch clusters to this new version OpenSearch 1.2.2