Log4j/log4shell CVE-2021-44228 and :cvb:

illusive · January 25, 2022, 4:23pm

Due to the recent news coverage, the question has occasionally been raised whether or not is affected by the log4j security vulnerability published in late 2021 as CVE-2021-44228.

Short answer: no

has no contact with the Java runtime environment in general and with the Java component log4j in particular. Log4j was not used in the realisation of and therefore is not affected by the security vulnerability known as “log4shell”.

The 3rd party components used in the realisation of Common Vision Blox also do not use log4j. The open source C++ component log4cpp, a component of the GenApi reference implementation, only has a similar name, but is not based on the Java runtime environment, which would be necessary for a “log4shell” attack.

Topic		Replies	Views
Introducing: Experimental CVB.Net, CVB++ and CVBpy API Programming Questions csharp , python , cplusplus	10	6560	August 1, 2019
Error while include "cvb/gevserver/node.hpp" C++ API	5	281	December 7, 2021
Error message while trying to create and start a GevServer under ARM C++ API	6	297	February 9, 2022
Error Message when launching Advanced Config in Management Console General Questions	3	814	May 30, 2018
Regulation regarding publishing an open source program using CVB	2	829	April 26, 2018

Log4j/log4shell CVE-2021-44228 and :cvb:

Related Topics