Re: Log4j Vulnerability Status

lilypond-user

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Log4j Vulnerability Status

From:	Jean Abou Samra
Subject:	Re: Log4j Vulnerability Status
Date:	Mon, 7 Feb 2022 23:58:21 +0100
User-agent:	Mozilla/5.0 (X11; Linux x86_64; rv:91.0) Gecko/20100101 Thunderbird/91.5.0

Le 07/02/2022 à 23:23, Murphy Sifa a écrit :

Hi Lilypond Software,
We are analysing our suite of SaaS vendors for exposure to the log4jvulnerability. I can’t find a statement on your page about theproducts that La Trobe is using.
Can you please provide me with the log4j vulnerability status of yourproducts?
Thank you
IS-Security La Trobe University




Well, LilyPond is not SaaS (and also free/libre software and
not sold by the way), and does not run in a web browser but
on your computer. The log4shell vulnerability has no relevance
for LilyPond. It may be relevant if you are using LilyPond
through some kind of Web-based editor, in which case you
would have to contact that team for information.

Best regards,
Jean

[Prev in Thread]

Current Thread

[Next in Thread]

Log4j Vulnerability Status, Murphy Sifa, 2022/02/07
- Re: Log4j Vulnerability Status, Jean Abou Samra <=
- Re: Log4j Vulnerability Status, Carl Sorensen, 2022/02/07

Prev by Date: Log4j Vulnerability Status
Next by Date: Moving a tie horizontally
Previous by thread: Log4j Vulnerability Status
Next by thread: Re: Log4j Vulnerability Status
Index(es):
- Date
- Thread