Home > mailing lists

PostgreSQL JDBC and the log4j CVE - Mailing list pgsql-announce

From	JDBC Project via PostgreSQL Announce
Subject	PostgreSQL JDBC and the log4j CVE
Date	December 13, 2021 18:46:38
Msg-id	163941039887.26069.1805777468235300589@wrigleys.postgresql.org Whole thread Raw
List	pgsql-announce

Tree view

PostgreSQL JDBC and the log4j CVE

A CVE has been reported on the popular logging implementation log4j.

As the PostgreSQL JDBC driver does not include this as a dependency we have determined that there is no need for concern. The driver is not vulnerable to this CVE.

Regards,

Dave Cramer

pgjdbc team

This email was sent to you from JDBC Project. It was delivered on their behalf by the PostgreSQL project. Any questions about the content of the message should be sent to JDBC Project.

You were sent this email as a subscriber of the pgsql-announce mailinglist, for for one of the content tags Related Open Source or Security. To unsubscribe from further emails, or change which emails you want to receive, please click the personal unsubscribe link that you can find in the headers of this email, or visit https://lists.postgresql.org/unsubscribe/.

pgsql-announce by date:

From: PostgreSQL Europe via PostgreSQL Announce
Date: 09 December 2021, 01:36:00
Subject: PostgreSQL @ FOSDEM 2022: Call for Proposals

From: Microsoft Azure via PostgreSQL Announce
Date: 15 December 2021, 14:01:09
Subject: Citus Con: An Event for Postgres—the CFP is open

PostgreSQL JDBC and the log4j CVE - Mailing list pgsql-announce

PostgreSQL JDBC and the log4j CVE

Previous

Next