As far as I can tell, cassandra uses logback, not log4j2, so it shouldn't be affected. The logback website <http://logback.qos.ch/>, in fact, now has some quite snarky language differentiating it from log4j2.
On Sat, Dec 11, 2021 at 9:07 AM Abdul Patel <abd786...@gmail.com> wrote: > Hi all, > > Any idea if any of open source Cassandra versions are impacted with log4j > vulnerability which was reported on dec 9th > -- James Brown Engineer
