Inquiry on Apache Log4j's Effect on Cygwin Software
Brian Inglis
Brian.Inglis@SystematicSw.ab.ca
Thu Dec 23 16:15:57 GMT 2021
On 2021-12-23 08:19, Iyana Garry wrote:
> Is there any confirmation that Cygwin software is not impacted by
> the Apache Log4J vulnerabilities (CVE-2021-44228, CVE-2021-45046 and
> CVE-2021-45105)?
Cygwin neither supports nor packages Java or log4j (Log for Java).
--
Take care. Thanks, Brian Inglis, Calgary, Alberta, Canada
This email may be disturbing to some readers as it contains
too much technical detail. Reader discretion is advised.
[Data in binary units and prefixes, physical quantities in SI.]
More information about the Cygwin
mailing list