Package: wnpp Severity: wishlist Owner: tony mancill <tmancill@debian.org> X-Debbugs-Cc: debian-devel@lists.debian.org * Package name : reload4j Version : 1.2.22 Upstream Author : Ceki Gülcü * URL : https://reload4j.qos.ch/ * License : Apache 2.0 Programming Lang: Java Description : Drop-in replacement for Apache log4j 1.2 Java logging framework The reload4j project is a fork of Apache log4j version 1.2.17 in order to fix most pressing security issues. It is intended as a drop-in replacement for log4j version 1.2.17. By drop-in, we mean the replacement of log4j.jar with reload4j.jar in your build without needing to make changes to source code, i.e., to your java files. With release 1.2.18.0 and later, the reload4j project offers a clear and easy migration path for the thousands of users who have an urgent need to fix vulnerabilities in log4j 1.2.17. This is being packaged because it is a dependency of slf4j [1] since version 1.7.33 (Debian currently ships version 1.7.32 [2]) and because a number of upstream projects have switched to reload4j. Having a separate reload4j source package will allow us to provide a clean transition from liblog4j1.2-java -> libreload4j-java and fully EOL Apache log4j 1.2. [1] https://www.slf4j.org/ [2] https://tracker.debian.org/pkg/libslf4j-java
Attachment:
signature.asc
Description: PGP signature