Steven W, 2021-12-14 07:25 »
Gotta wonder how much we'll be hearing about this one in the coming weeks/ years.
https://www.itworldcanada.com/article/i ... ert/468238
In an interview, Johannes Ullrich, dean of research at the SANS Institute, predicted it will take years for organizations and cloud providers to patch their applications to close this hole. Oracle is still patching some of its applications from different log4j vulnerabilities discovered several years ago, he pointed out.
I hate to say this, but why the fuck would you want to use Java in this way?
Gotta wonder how much we'll be hearing about this one in the coming weeks/ years.
https://www.itworldcanada.com/article/it-could-take-years-for-applications-using-vulnerable-version-of-java-log4j-library-to-be-patched-says-expert/468238
[quote]In an interview, Johannes Ullrich, dean of research at the SANS Institute, predicted it will take years for organizations and cloud providers to patch their applications to close this hole. Oracle is still patching some of its applications from different log4j vulnerabilities discovered several years ago, he pointed out.[/quote]
I hate to say this, but why the fuck would you want to use Java in this way?