「Apache Log4j」の脆弱性が話題だけど、そもそもApacheとかJavaの語源って知ってる？ヤマーとマツの、ねえこれ知ってる？

米国時間の12月9日ごろから、Java用のログ出力ライブラリ「Apache Log4j」におけるリモートコード実行の脆弱性が話題になっています。

Java版「Minecraft」にセキュリティ更新、極めて危険な「Log4j」脆弱性に対処 最新版にアップグレードできない場合の対策も案内 ...

More than 80% of Java packages affected by the vulnerability in the Apache Log4j library cannot be updated directly and will require coordination between different project teams to address the flaw.

The Apache Logging Services Projectは9月2日(米国時間)、Apache log4j 1.2系の最新版となる「Apache log4j 1.2.15」を公開したことを発表した。Apache log4jはJavaで開発 ...

A newly discovered zero-day vulnerability in the widely used Java logging library Apache Log4j is easy to exploit and enables attackers to gain full control of affected servers.

A WARNING has been issued for those who use the Log4J logging library that a spreading botnet could open up “a whole new pool of potential victims.” The warning was issued by Cybersecur… ...

The maintainers of the Java Log4j project had only three sponsors, despite the software being a crucial part of large companies' commercial products and enterprise applications.