search

stritti / log4js

Log4js - The Logging Framework for JavaScript with no runtime dependencies
https://stritti.github.io/log4js/
Apache License 2.0
449 stars 57 forks source link

Is log4js affected by CVE-2021-44228 #57

Closed intensite closed 2 years ago

intensite commented 2 years ago

Can you confirm the log4js library is not affected by the Log4j remote code execution vulnerability (CVE-2021-44228) ?

Thank you!

jothibasu-smartaudit commented 2 years ago

Can you confirm the log4js library is not affected by the Log4j remote code execution vulnerability (CVE-2021-44228) ?

Thank you!

ghuotvez commented 2 years ago

https://github.com/log4js-node/log4js-node/issues/1105#issuecomment-991957807 I think this answers the issue.

jothibasu-smartaudit commented 2 years ago

log4js-node/log4js-node#1105 (comment) I think this answers the issue.

@ghuotvez Yes, it helps. Thank you 😊

stritti commented 2 years ago

https://github.com/log4js-node/log4js-node/issues/1105#issuecomment-991957807 I think this answers the issue.

Yes, as log4js-node is a fork of this log4js and referred entry answers this issue too.