New log4j update! (2.1.17)

If you recently updated any log4j 2 problems, there's yet another new log4j 2 library update in maven. 2.1.17 that fixes a vulnerability found in 2.1.16.

https://mvnrepository.com/artifact/org.apache.logging.log4j/log4j-api/2.17.0

4 Likes

Thank You very much!

While I'm fine with FMS, I realized that 'oxygen' (xml environment) needed updates for log4j. They shipped an update twice last week - but make sure to check their websites a bit more frequently...

1 Like

That's good information! I had no idea Oxygen was affected.

Thanks!