Inquiry on Apache Log4j's Effect on Cygwin Software

Brian Inglis
Thu Dec 23 16:15:57 GMT 2021

On 2021-12-23 08:19, Iyana Garry wrote:
> Is there any confirmation that Cygwin software is not impacted by
> the Apache Log4J vulnerabilities (CVE-2021-44228, CVE-2021-45046 and 
> CVE-2021-45105)?
Cygwin neither supports nor packages Java or log4j (Log for Java).

Take care. Thanks, Brian Inglis, Calgary, Alberta, Canada

This email may be disturbing to some readers as it contains
too much technical detail. Reader discretion is advised.
[Data in binary units and prefixes, physical quantities in SI.]

More information about the Cygwin mailing list