Skip to main content
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] [List Home]
[orbit-dev] Eclipse Orbit Log4j Vulnerability Info
  • From: "Deepthi Murugaiyan (MS/EMT5-XC)" <Deepthi.Murugaiyan@xxxxxxxxxxxx>
  • Date: Tue, 11 Jan 2022 09:22:51 +0000
  • Accept-language: en-US
  • Arc-authentication-results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=in.bosch.com; dmarc=pass action=none header.from=in.bosch.com; dkim=pass header.d=in.bosch.com; arc=none
  • Arc-message-signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=bNU3oN3vP2xNMuv1oo75ppPRrv9XYN3gEJcGLvHvD5k=; b=ctEaXgOgpC8jzHBbyStO7HduInS3KtCIKr9SXisMiCIYXR4Ouw9LtoYyJyvsqUqD9ALDgt7BIuiThuLVjXOlIhCgxvVLecMwEKyNexPNdP5Aq7Ewc3LImqL53m44UCbCokk4yB0X4TXVhS1RBlhLKUB9SvJORWaJyt/eg70z+32FnQgPQyLmBX7m4hv905m2kr56zEKnKtXuigkRtUHwRcGFJZNwV3r/Vg4BX64v7BFMLWPdpHCV0his5yw2qXfxWh3hKmsg/t9wMnZt4naT0WFFhKttTg8gume+K1p3xZmlWlm/Hr3wG3Ciwj7UqxBzh7JfmFaSwgajap0RsopD6w==
  • Arc-seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=G6I2gHkie+n30fDSu3oKSZT9B6sF+pieR+t5VPz1NyEV+WVPZEfKYgb6YePfGEjCFBVs7o3oa14zVY+x6PhK6Ne+vdUsxCHCzvcy7CH3pFNsfXvnlU6bwmNwlXHS4LC2XmKIehep3824wbpO9glBJV5Bf2lK28xhnPIIypwsTtHJsbJG/osA1mwdhK8xp/RWlbe1Gy7iLnTqWkxGI7ID879s4a6hHBVC+/ivPj7pkSys0uCpXShBnHzuUazlwbJaFBWLr04uEsH4yASZEd/MgEIOyzkEjTmyRj0IwUfuKkwjBCgh2DaVYmQAuBfKMsY45nfX85PdadRtfbZgMIBE/Q==
  • Delivered-to: orbit-dev@xxxxxxxxxxx
  • List-archive: <https://www.eclipse.org/mailman/private/orbit-dev/>
  • List-help: <mailto:orbit-dev-request@eclipse.org?subject=help>
  • List-subscribe: <https://www.eclipse.org/mailman/listinfo/orbit-dev>, <mailto:orbit-dev-request@eclipse.org?subject=subscribe>
  • List-unsubscribe: <https://www.eclipse.org/mailman/options/orbit-dev>, <mailto:orbit-dev-request@eclipse.org?subject=unsubscribe>
  • Thread-index: AdgGyn5cuNmGCXNxQtW2oYQoDtqabAAAibNg
  • Thread-topic: Eclipse Orbit Log4j Vulnerability Info

Hello Orbit Team,

 

I work for BOSCH Group and we mostly use the Eclipse Framework to construct applications.

 

In the recent times globally everyone knew about the Apache Log4j contains some Security Vulnerability issue and as a result all of the issues have a mitigation action.

 

We found that Eclipse has a vulnerability state list for most of the projects it has built. (https://wiki.eclipse.org/Eclipse_and_log4j2_vulnerability_(CVE-2021-44228))

 

However, I was unable to locate any information regarding the Eclipse Orbit Project.

 

Could you please help us out in clarifying whether Eclipse Orbit is secure ?

 

Thank you very much.

 

Mit freundlichen Grüßen / Best regards

Murugaiyan Deepthi

ES-CDG-Methods Tools (RBEI/EMT5)
Robert Bosch GmbH | Postfach 10 60 50 | 70049 Stuttgart | GERMANY | www.bosch.com
Tel. +91 422 619-1119 | Fax +91 422 663-4104 | Deepthi.Murugaiyan@xxxxxxxxxxxx

Registered Office: Stuttgart, Registration Court: Amtsgericht Stuttgart, HRB 14000;
Chairman of the Supervisory Board: Prof. Dr. Stefan Asenkerschbaumer; Managing Directors: Dr. Stefan Hartung,
Dr. Christian Fischer, Filiz Albrecht, Dr. Markus Forschner, Dr. Markus Heyn, Rolf Najork

Back to the top