Come for the quick hacks, stay for the epiphanies. | |
PerlMonks |
comment on |
( [id://3333]=superdoc: print w/replies, xml ) | Need Help?? |
I don't know what you're getting at exactly, but I'm going to make some guesses: Log::Log4perl works without Java installed, so if it has vulnerabilities, these are not caused by any Java dependency. The main vulnerability in Log4j is the (v2) loading of code via JNDI. Log::Log4perl does implement the version 1 API of Log4j. If you don't understand the source code, you will have to trust somebody who says that there is no vulnerability. In reply to Re: Log4Shell and Log::Log4perl
by Corion
|
|