NATS Advisories

Logo

Security advisories for the NATS.io project

To report a vulnerability, please send email to security@nats.io.

View the Project on GitHub nats-io/advisories

Apache Log4j 2 Java library

2021-12-13

Regarding CVE-2021-44228, aka “Log4Shell”, aka “LogJam”, a security-impacting bug of text re-interpolation over untrusted data in the Log4j v2 library: