Update Alation from 2021.4.x to 2021.4.4 or Later Patches¶
Version 2021.4.4 includes security fixes for the Log4j 2 vulnerabilities reported in December 2021. In 2021.4.4, the Alation Hive Connector and Elasticsearch components were updated with a newer version of Apache Log4j 2, which mitigates potential risks.
Updating Alation from 2021.4.0 (LA) or 2021.4.1 (GA) to 2021.4.4 or a later patch if skipping 2021.4.4 includes an additional step that you should perform before updating the Alation application:
Use the steps in Validating the Value of Parameter elasticsearch.env.es_java_opts to update the value of the alation_conf parameter
elasticsearch.env.es_java_optsbefore updating to 2021.4.4 or later patches if skipping 2021.4.4.
After that, update Alation: