Good Afternoon Apache Hope your well, my name is Samuel I work for a Security firm Cloud 21 and we have been working with a client who uses your software in particular Tomcat. We are looking to see if there is a security patch against log4j. The version they are using is tomcat 7, checking your dedicated page for Tomcat version 7 Apache Tomcat(r) - Apache Tomcat 7 vulnerabilities<https://tomcat.apache.org/security-7.html#Apache_Tomcat_7.x_vulnerabilities> there does not appear to be an article to patch against it. Forgive me if I'm not looking in the correct area if there is one please could you point me in the right direct. I did try and email your security mailbox but received an automated message back saying that I needed to be on the subscribed list which I have attempted to subscribed too but I have not had a response back yet.
Any help would be much appreciated as we have several clients that use Tomcat too. Kind Regards Samuel Anderson-Burrell | Cloud21 This email, and any attachments transmitted with it, is confidential and protected by copyright. If you are not the intended recipient you must not use, disseminate, distribute or copy this e-mail or any attachment. If you have received this email in error please notify the sender and delete this email, and any attachments, completely from your system. This notification is given by Cloud21, part of the x-tention group, Suite 01, 40 Churchill Square, West Malling, Kent ME19 4YU. Registered in England 06907257.