Re: Kafka Log4J vulnerabilities - Urgent

Hi, Currently, Apache Kafka with log4j2 is planning to be 4.0, after the 3.5 release. If you are urgent, please have a look at the preview versions here - You can find a custom preview based on 3.0.1, 3.1.1, and 3.2.0. I wrote

Kafka Log4J vulnerabilities - Urgent

Hi Team, Trust you are doing good and I hope I'm mailing the correct DL (if not kindly point me to one) ! This mail is w.r.t Kafka Log4j vulnerabilities. PFB the description - Log4J 1.x vulnerability with Kafka is a known vulnerability. The published workaround is to remove the Appender