Log4J Vulnerability?

In light of the recent CVE, I was wondering if FOP2 employs this logging facility? And if so, will it be patched to the updated version that addresses this vulnerability?

Comments

  • @gregarican said:
    In light of the recent CVE, I was wondering if FOP2 employs this logging facility? And if so, will it be patched to the updated version that addresses this vulnerability?

    Agreed 110% - we need to know if our servers are vulnerable to this and how quickly the Devs at FOP2 can check and patch if needed.

  • Yes, please let us know.

  • edited January 6

    AFAIK fop2_server is not a java application, so log4j does not apply.

  • That's correct. log4j does not affect/apply to neither FOP2 or Asternic software suite.

Sign In or Register to comment.