Advanced
Mailing List Archive

Mailing List Archive

  1. Home >
  2. Trac>
  3. Users
log4j vulnerability - trac
ramkumar.raghavan at gmail
Dec 15, 2021, 4:23 AM
Post #1 of 2 (251 views)
Permalink
Hi All,



Does trac uses log4j and is there any mitigation steps required.



Thanks

Ramkumar R

--
You received this message because you are subscribed to the Google Groups "Trac Users" group.
To unsubscribe from this group and stop receiving emails from it, send an email to trac-users+unsubscribe@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/trac-users/CAHSJah9p2HFj5OBYB%3DLpFn%3DS06%2BYw2ZyscezSJtzv5_HvZqNDg%40mail.gmail.com.
Re: log4j vulnerability - trac [ In reply to ]
rjollos at gmail
Dec 15, 2021, 12:18 PM
Post #2 of 2 (251 views)
Permalink
On Wednesday, December 15, 2021 at 3:15:02 PM UTC-5 Ramkumar Raghavan wrote:

> Hi All,
>
>
>
> Does trac uses log4j and is there any mitigation steps required.
>
>
>
> Thanks
>
> Ramkumar R
>

Trac is written in Python and does not directly use any Java libraries such
as Log4j.

I had wondered about Apache webserver, but it looks like that does not use
Log4j either:
https://serverfault.com/a/1086115

Ryan

--
You received this message because you are subscribed to the Google Groups "Trac Users" group.
To unsubscribe from this group and stop receiving emails from it, send an email to trac-users+unsubscribe@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/trac-users/5eb9638d-66a2-4c63-a230-0f0f9bb38212n%40googlegroups.com.

©2024 GT.net. A Gossamer Threads company.
5th Floor, 455 Granville St., Vancouver, BC V6C 1T1, Canada | Legal