[mapserver-users] security problem?
Bjørn Ove Grøtan
bjorn.ove at grotan.com
Tue Dec 14 07:08:12 PST 2021
Uhm - guess not many are using the Mapscript Java-binding then? (I don't, so haven't tested)
https://mapserver.org/ogc/mapscript.html
But as Jukka said, Mapserver in itself is not written in Java.
If you are using Mapscript w/Java bindings, you have to check for yourself
what you do in your own code.
According to https://trac.osgeo.org/mapserver/wiki/JavaMapscriptUsing
commons-logging is being used, not log4j - if you are indeed using Mapscript-Java.
-Bjørn
Rahkonen Jukka (MML):
> Hi,
>
> Log4j is a Java library, Mapserver is not Java. You can feel safe with this issue.
>
> -Jukka Rahkonen-
>
> Lähettäjä: MapServer-users <mapserver-users-bounces at lists.osgeo.org> Puolesta Zimmer Rene
> Lähetetty: tiistai 14. joulukuuta 2021 15.36
> Vastaanottaja: 'mapserver-users at lists.osgeo.org' <mapserver-users at lists.osgeo.org>
> Aihe: [mapserver-users] security problem?
>
> Hello everybody,
>
> when using Mapserver, is there also a security problem with log4j?
>
> Is it used?
>
> If so, how can the gap be closed?
>
>
> Thanks,
>
> Rene
>
>
>
>
> --
>
> This email was Anti Virus checked by Astaro Security Gateway.
>
>
>
> Geprüft und getestet
> _______________________________________________
> MapServer-users mailing list
> MapServer-users at lists.osgeo.org
> https://lists.osgeo.org/mailman/listinfo/mapserver-users
More information about the MapServer-users
mailing list