Huge RCE in log4j logging library in JVM ecosystem

#java #jvm #kotlin #scala

5 days ago log4j received hot-fix for huge RCE. It's not quite known topic and today it has been expolited in multiple projects.

https://twitter.com/dzikoysk/status/1469091718867951618

It's really easy to reproduce, you should take a look at dependencies in your projects to address this issue. At least bump it to 2.15, the best choice is to move to e.g. logback, at least for a while.

Top comments (0)

Facade Pattern

Sota - Dec 3 '24

My first attempt at Deploying a Backend Service on AWS: A Journey of Learning and Problem-Solving

Joseph Olugbohunmi - Nov 30 '24

Reflection API in Java: The Superpower You Didn’t Know You Had

Harshit Singh - Nov 29 '24

Building an AI Fix SonarQube Dashboard with Vaadin and Spring Boot

Jonathan Vila - Dec 2 '24

DEV Community