Description
Some log4j 1.x vulnerabilities have been disclosed recently:
- CVE-2022-23302: https://nvd.nist.gov/vuln/detail/CVE-2022-23302
- CVE-2022-23305 : https://nvd.nist.gov/vuln/detail/CVE-2022-23305
- CVE-2022-23307 : https://nvd.nist.gov/vuln/detail/CVE-2022-23307
We would like to know if zookeeper is affected by these vulnerabilities ?
Attachments
Issue Links
- is related to
-
ZOOKEEPER-4427 Migrate to Logback
- Resolved
- relates to
-
ZOOKEEPER-4455 Move to https://reload4j.qos.ch/ (remove log4j1)
- Closed