GitHub user mmahant17 added a comment to the discussion: log4j version 2.17.1
Thank you for your prompt response.
GitHub link:
https://github.com/apache/logging-log4j2/discussions/3679#discussioncomment-13212196
This is an automatically sent email for dev@logging.apache.org.
To unsubscri
GitHub user ppkarwasz added a comment to the discussion: log4j version 2.17.1
> Could you please confirm if Log4j version 2.17.1 is supported?
Whether we "support" Log4j version `2.17.0` depends on how you define
"support," so let’s break it down:
- We **no longer** maintain the `2.17.x` mino
GitHub user ppkarwasz edited a comment on the discussion: log4j version 2.17.1
> Could you please confirm if Log4j version 2.17.1 is supported?
Whether we "support" Log4j version `2.17.0` depends on how you define
"support," so let’s break it down:
- We **no longer** maintain the `2.17.x` min
GitHub user ppkarwasz added a comment to the discussion: log4j version 2.17.1
That’s an excellent answer — thank you!
Just to add for completeness: version 2.17.0 was never affected by
CVE-2021-44832. This was confirmed in a later review (see
apache/logging-site#6).
GitHub link:
https://gith
GitHub user perry2of5 added a comment to the discussion: log4j version 2.17.1
Please refer to the security page:
https://logging.apache.org/security.html
Also, mvnrepository.com provides links to most security vulnerabilities from
affected artifacts. For example, on log4j-core, it doesn't show
