wait, what happened with java?
-F
@Felthry There's a remote code execution vulnerability in one of the most popular logging libraries.
@terrana Is there anything we need to do (update java etc) or is this a problem that only people running servers need to worry about? because i've seen people directing stuff to people running servers specifically
-F
@terrana (if you know, anyway. You seem like someone who would know, is all!)
-F
@Felthry It primarily affects servers. Java-based client applications are also vulnerable, most notably Minecraft, but all you can really do about those is avoid connecting to untrusted servers and wait for them to be updated.
@terrana Thank you, that's a worry off our plate then.
-R
It's vulnerable to a newly found exploit that is executable remotely.
@Felthry huge security exploit found in log4j, a logging module used in a whole bunch of software made in java