Hi, Please go through this https://issues.apache.org/jira/plugins/servlet/mobile#issue/ZOOKEEPER-4423 for the on-going discussion.
Regards, Aishwarya Soni On Sat, Dec 18, 2021, 2:00 PM Rusty Deaton <[email protected]> wrote: > Hi there, > > Given that zookeeper uses log4j 1.2, it appears as though there's a > potentially large CVE, https://nvd.nist.gov/vuln/detail/CVE-2021-4104 . > Is there any official stance on this vulnerability? >
