Our product does not use Log4j, so it has no Log4j vulnerability. Furthermore, we do not provide SaaS. We provide downloadable binaries, with software run on local users’ computers and no connection to the cloud.
Carl
From:
lilypond-user <lilypond-user-bounces+carl.d.sorensen=gmail.com@gnu.org> on behalf of Murphy Sifa <M.Sifa@latrobe.edu.au>
Date: Monday, February 7, 2022 at 3:52 PM
To: "lilypond-user@gnu.org" <lilypond-user@gnu.org>
Cc: Andrew Morgan <Andrew.Morgan@latrobe.edu.au>
Subject: Log4j Vulnerability Status
Hi Lilypond Software,
We are analysing our suite of SaaS vendors for exposure to the log4j vulnerability. I can’t find a statement on your page about the products that La Trobe is using.
Can you please provide me with the log4j vulnerability status of your products?
Thank you
IS-Security La Trobe University
|