X-Recipient: archive-cygwin AT delorie DOT com
X-Original-To: cygwin AT cygwin DOT com
Delivered-To: cygwin AT cygwin DOT com
DMARC-Filter: OpenDMARC Filter v1.4.1 sourceware.org BD1713858418
Authentication-Results: sourceware.org;
 dmarc=none (p=none dis=none) header.from=iname.com
Authentication-Results: sourceware.org; spf=pass smtp.mailfrom=iname.com
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=mail.com;
 s=dbd5af2cbaf7; t=1640274236;
 bh=UnDf6z4Z8Y8yJ4LhO72MZZecd6uoZSStUKeOeLXurok=;
 h=X-UI-Sender-Class:References:In-Reply-To:From:Date:Subject:To;
 b=RTMIGiGU5xDvSTr3uW3aGPw072fhBc+wkAKPPLleU1zX1gzbsUC7qeoIFGgQiPS1d
 YasDBD/MEU6edmMdP5hBX5ZAQzcIVvJfIWWBgn1JxD3aEpLqnDy5NcF2rIeB/bZpNJ
 3W2G3q4SQnv30hnZHQKDrDhnlB+fxJP+c4vXCMhc=
X-UI-Sender-Class: 214d933f-fd2f-45c7-a636-f5d79ae31a79
X-Gm-Message-State: AOAM530UVSWISiV69vVVLDrTSIOBZtF/93EgOC+807wi860hIUE4uyCm
 vmAR9rvo/xUR7T6EL1G8d0YDNSgAF5gKLkhzf9c=
X-Google-Smtp-Source: ABdhPJyf99Ovd/2MksUARZY8j/MmQMn+nj2he4g3XQFR35Ygp2j58Nq+vtDpvrRA8Ubzm5iUyyKbHzoydZ+wAcSPcuE=
X-Received: by 2002:a05:6512:2606:: with SMTP id
 bt6mr2200670lfb.202.1640274234666; 
 Thu, 23 Dec 2021 07:43:54 -0800 (PST)
MIME-Version: 1.0
References: <MW5PR16MB4715B5B954FCFE75D451F6E7D77E9 AT MW5PR16MB4715 DOT namprd16 DOT prod DOT outlook DOT com>
In-Reply-To: <MW5PR16MB4715B5B954FCFE75D451F6E7D77E9@MW5PR16MB4715.namprd16.prod.outlook.com>
From: Bill Stewart <bstewart AT iname DOT com>
Date: Thu, 23 Dec 2021 08:43:27 -0700
X-Gmail-Original-Message-ID: <CANV9t=Ra1_dHnGA1z=ae68p2k8nBGCcz6nCq724ii+eN_QmdEw AT mail DOT gmail DOT com>
Message-ID: <CANV9t=Ra1_dHnGA1z=ae68p2k8nBGCcz6nCq724ii+eN_QmdEw@mail.gmail.com>
Subject: Re: Inquiry on Apache Log4j's Effect on Cygwin Software
To: "cygwin AT cygwin DOT com" <cygwin AT cygwin DOT com>
X-Provags-ID: V03:K1:UVOwlzuTb6Zz7YEuZ8RSYeEHXylsq2JIjDXA/4Cll03iJSosRp3
 a9OLNvZLP+M0JZINJpASTEra2TpmLR22K/hicM3k4bWMD+J+7sOZ3BIFahBiQMrTd9zi9Q7
 dy8bGdcOXehr1l/z0x3HMjM13HG8JsheJvDkhXdwORnFBZc3UGgJAG8eQ/Wcm+lAiTVdVdQ
 tqD0Ob6qzYjimXQyNI8Xg==
X-UI-Out-Filterresults: notjunk:1;V03:K0:mYdoEIknbpI=:jGwu8PlGVqtsbz1kSv3rfW
 rG7zqoDM/e7kZrDz7nnAfye+DIBraiY1M67Z0MEpfXh54zwxADTG6Zvn/sO6BIIHzH5GIFOpp
 SbB4gPcaqDe9z5WBm7FnOjCHTn39Bb2tUV3fYgoohOWTcqBuDERrVeV7lX3kwtK3aeULfeuU3
 BLP5vZIHn6pKd0g5PAQV9vavu0PYR5H55XVCeoTktegwcQn8TavcZ+gFdRoSlqBpDU+FeXnou
 lXvwZ9kZp1VjFabhzapdU5LndbndHa/aqnDQCxB5OlQHl8OSWxGFg7QPwsCS7uu7sJcVI8rFK
 xCUOGLi28Yoa9T4gLxmVU6cH39t9NSQpf4k2aeC8GXEx6QM7Uq3fgNMuieZ3SqF11NUcsAf4E
 smWiwy1Q11+cj932spYVguzDodgWfmuOjSPpil2qrDrbak+BXuML0XPnN1Pcn9S4D7ThjaL1L
 +p0KBJEI5barZGKHhx/6lV9sgMbhwVOUUyqHMPBmSBgtCdDkYDSylfm1jmJY84tpiHzMV2B/c
 +9qNFR8H2NplV5t1d9iBNEzoNSc+Nm8S9GjZvH6TVsR+HIOXPWDH6vNMF7eghlczA7YfG4VWM
 uPXkwJBVfXyUW3DJsMXKH90GKuVRe4kr8VNq++4I3f3WOP4voTLuJtjhs9yaWiZit8BfZjtdv
 RgTfs/VJi0+6h/g4ETOZi3JuIOY+c92H1/f7HabvMoQN9+7LA+UJo4mQOFTp/LlPkkoS0+6lh
 9eIOD1emXP1li8Kqwae9lpqy29MAL6NeRqZDisu22ODZzXqmyL7EadxJxfh6lV4gmygoZqB67
 jbe+dDpWXZgnSiubsxHXpCtjaZQOo2pmSDlmbV7Bsyfy7sa5AVbrNCc0AsNkKQr+sShSvm+WF
 OlsQXNhN2MenMFGqTkqfhu2IUxs5Ol86INROGM+NNJfjzQjXiVLOtUxTjB7NmDHWVZrrmfP2u
 uHDCOJGFsgNvombKT0d6xqN0OABuy5EOpF40FAOpCeASZo+C/v8B02vlkjI0vlknGS8gA7OD2
 4yM1DK399Nq17g9O40mIpMsRf5tt7e7RbApx3xZseYNcSybWjjv+V1vZLFBYk5xQHQ9u9rRwZ
 2C41d9a1sh5P84=
X-Spam-Status: No, score=-2.4 required=5.0 tests=BAYES_00, DKIM_SIGNED,
 DKIM_VALID, FREEMAIL_FROM, HTML_MESSAGE, RCVD_IN_DNSWL_LOW, RCVD_IN_MSPIKE_H2,
 SPF_HELO_NONE, SPF_PASS, TXREP autolearn=ham autolearn_force=no version=3.4.4
X-Spam-Checker-Version: SpamAssassin 3.4.4 (2020-01-24) on
 server2.sourceware.org
X-Content-Filtered-By: Mailman/MimeDel 2.1.29
X-BeenThere: cygwin AT cygwin DOT com
X-Mailman-Version: 2.1.29
List-Id: General Cygwin discussions and problem reports <cygwin.cygwin.com>
List-Archive: <https://cygwin.com/pipermail/cygwin/>
List-Post: <mailto:cygwin AT cygwin DOT com>
List-Help: <mailto:cygwin-request AT cygwin DOT com?subject=help>
List-Subscribe: <https://cygwin.com/mailman/listinfo/cygwin>,
 <mailto:cygwin-request AT cygwin DOT com?subject=subscribe>
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Sender: "Cygwin" <cygwin-bounces+archive-cygwin=delorie DOT com AT cygwin DOT com>

On Thu, Dec 23, 2021 at 8:19 AM Iyana Garry wrote:

Is there any confirmation that Cygwin software is not impacted by the
> Apache Log4J vulnerabilities (CVE-2021-44228, CVE-2021-45046 and
> CVE-2021-45105)?
>

I'm not sure why there would need to be any such confirmation. Log4J is a
Java application logging framework.

Bill

-- 
Problem reports:      https://cygwin.com/problems.html
FAQ:                  https://cygwin.com/faq/
Documentation:        https://cygwin.com/docs.html
Unsubscribe info:     https://cygwin.com/ml/#unsubscribe-simple