Re: [Lo4Net] Cyber Vulnerability Vendor Impact Assessment for Lo4Net

2021-12-17 Thread Remko Popma
Hi Milind, Please take a look at this page, which has all the details: https://logging.apache.org/log4j/2.x/security.html In short, the log4net library is not impacted. Only log4j (the java library) is impacted by this vulnerability. Kind regards, Remko On Sat, Dec 18, 2021 at 6:24 AM Milind W

Re: [Lo4Net] Cyber Vulnerability Vendor Impact Assessment for Lo4Net

2021-12-17 Thread Dominik Psenner
Hi Milind, log4net is not log4j and therefore the recent log4j vulnerability is unrelated to log4net. Beyond that, the Apache Software Foundation is vendor neutral. Warm regards, Dominik On Fri, 17 Dec 2021 at 22:24, Milind Wankhede wrote: > Good Morning/Afternoon, > As you may know, a cyber-v

[Lo4Net] Cyber Vulnerability Vendor Impact Assessment for Lo4Net

2021-12-17 Thread Milind Wankhede
Good Morning/Afternoon, As you may know, a cyber-vulnerability impacting Java Library: log4j was recently identified. DHS warns of critical flaw in widely used software - CNNPolitics As a result and to provide ou