sikuli-driver team mailing list archive

Thread
Date

sikuli-driver team
Mailing list archive
Message #58331

Re: [Question #702137]: Log4j 1.x vulnerability with Sikuli2.x ?

To: sikuli-driver@xxxxxxxxxxxxxxxxxxx
From: RaiMan <question702137@xxxxxxxxxxxxxxxxxxxxx>
Date: Fri, 10 Jun 2022 12:55:47 -0000
Reply-to: question702137@xxxxxxxxxxxxxxxxxxxxx
Sender: noreply@xxxxxxxxxxxxx

Question #702137 on SikuliX changed:
https://answers.launchpad.net/sikuli/+question/702137

RaiMan proposed the following answer:
Until version 2.0.5 log4J 1.x exists in SikuliX through the dependency
chain tess4j -> gost4j -> log4j

Beginning with version 2.0.6 we use the latest version of Tess4J
(5.1.1), which has replaced ghost4j with apache-pdfbox and hence no
longer depends on any log4j.

-- 
You received this question notification because your team Sikuli Drivers
is an answer contact for SikuliX.