|[orbit-dev] Eclipse Orbit Log4j Vulnerability Info|
Hello Orbit Team,
I work for BOSCH Group and we mostly use the Eclipse Framework to construct applications.
In the recent times globally everyone knew about the Apache Log4j contains some Security Vulnerability issue and as a result all of the issues have a mitigation action.
We found that Eclipse has a vulnerability state list for most of the projects it has built. (https://wiki.eclipse.org/Eclipse_and_log4j2_vulnerability_(CVE-2021-44228))
However, I was unable to locate any information regarding the Eclipse Orbit Project.
Could you please help us out in clarifying whether Eclipse Orbit is secure ?
Thank you very much.
Mit freundlichen Grüßen / Best regards
Back to the top