[jira] [Resolved] (LOGCXX-542) Remove log4j serialization

Robert Middleton (Jira) Sun, 26 Dec 2021 16:37:06 -0800


     [ 
https://issues.apache.org/jira/browse/LOGCXX-542?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]


Robert Middleton resolved LOGCXX-542.
-------------------------------------
    Resolution: Fixed

The branch next_stable should have all Java serialization removed at this point.

> Remove log4j serialization
> --------------------------
>
>                 Key: LOGCXX-542
>                 URL: https://issues.apache.org/jira/browse/LOGCXX-542
>             Project: Log4cxx
>          Issue Type: Improvement
>            Reporter: Robert Middleton
>            Priority: Major
>             Fix For: 1.0.0
>
>
> Remove the log4j serialization.  Since Java object serialization is known to 
> be vulnerable to security issues, and this only targets log4j 1.x, there's no 
> real reason for us to keep it.



--
This message was sent by Atlassian Jira
(v8.20.1#820001)

[jira] [Resolved] (LOGCXX-542) Remove log4j serialization

Reply via email to