sikuli-driver team mailing list archive

Thread
Date

Re: [Question #699868]: High-risk vulnerability in Log4j 2.x --- not used with SikuliX

To: sikuli-driver@xxxxxxxxxxxxxxxxxxx
From: Chetan <question699868@xxxxxxxxxxxxxxxxxxxxx>
Date: Wed, 15 Dec 2021 12:55:50 -0000
Reply-to: question699868@xxxxxxxxxxxxxxxxxxxxx
Sender: noreply@xxxxxxxxxxxxx

Question #699868 on SikuliX changed:
https://answers.launchpad.net/sikuli/+question/699868

Chetan requested more information:
as per latest updates
A high severity vulnerability (CVE-2021-44228) impacting multiple versions of the Apache Log4j 2 utility was disclosed publicly via the project’s GitHub on December 9, 2021. This vulnerability, which was discovered by Chen Zhaojun of Alibaba Cloud Security Team, impacts Apache Log4j 2 versions 2.0 to 2.14.1. There are reports from Log4j maintainers that the 1.x series may also vulnerable to this issue when using the JMS Appender class.

-- 
You received this question notification because your team Sikuli Drivers
is an answer contact for SikuliX.