Hi Not directly related to TornadoFX but there s a Log4j exp kotlinlang #tornadofx

Hi. Not directly related to TornadoFX, but there's...

carlw

01/07/2020, 6:24 PM

Hi. Not directly related to TornadoFX, but there's a Log4j exploit out and you may need to upgrade. https://github.com/advisories/GHSA-2qrg-x229-3v8q

Ruckus

01/07/2020, 6:50 PM

Do you know if Log4j 2 is also vulnerable?

carlw

01/07/2020, 7:38 PM

Says up to 1.2.17

Ruckus

01/07/2020, 10:13 PM

Yeah, I should have read better before asking. Thanks.