Log4j Security Hole Found In OmniFind Text Search Server
March 14, 2022 Timothy Prickett Morgan
Who would have thought that a logging utility written in Java and available for more than two decades could cause so much trouble? But that is the nature of the Log4j security vulnerability, which has been installed in all kinds of systems software and which had a Log4Shell vulnerability that was discovered by Chinese computing giant Alibaba on November 24 last year and that was revealed to the world on December 9 as a zero-day vulnerability.
There are several areas of the IBM i software stack that use the Log4j logging utility, which is one of the many Apache open …
Read more