Apache Log4j team is pleased to announce the `2.25.3` release. Apache Log4j is a versatile, industrial-strength Java logging framework composed of an API, its implementation, and components to assist the deployment for various use cases. For further information (support, download, etc.) see the project website[1].
[1] https://logging.apache.org/log4j/2.x/index.html == Release Notes This patch release addresses issues detailed in the changelog below. In particular, it includes an important fix for the host name verification in SSL/TLS configuration. This is used by Socket Appender. === Changed * Optimize `DefaultThreadContextMap.getCopy()` performance by avoiding megamorphic calls in `HashMap` constructor (#3935, #3939) === Fixed * Fix GraalVM metadata for nested classes to use binary names instead of canonical names (#3871, #3996) * Fix failures caused by null `SslConfiguration` (#3947, #3953) * Fix incorrect handling of the host name verification in SSL/TLS configuration, which is used by Socket Appender when SSL/TLS is enabled (#4002) === Removed * Remove the `com.github.spotbugs:spotbugs-annotations` dependency (#3984, #3985) --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
