<html><head></head><body><div class="yahoo-style-wrap" style="font-family:times new roman, new york, times, serif;font-size:16px;"><div dir="ltr" data-setdir="false">Hello,</div><div dir="ltr" data-setdir="false"><br></div><div dir="ltr" data-setdir="false">Just wanted to check if the log4j vulnerability mentioned here: <a href="https://blog.malwarebytes.com/exploits-and-vulnerabilities/2021/12/log4j-zero-day-log4shell-arrives-just-in-time-to-ruin-your-weekend/" rel="nofollow" target="_blank">https://blog.malwarebytes.com/exploits-and-vulnerabilities/2021/12/log4j-zero-day-log4shell-arrives-just-in-time-to-ruin-your-weekend/</a></div><div dir="ltr" data-setdir="false"><br></div><div dir="ltr" data-setdir="false">Has any equivalent exploit in logback or slf4j users that:</div><div dir="ltr" data-setdir="false"> - Don't use log4j as a direct dependency</div><div dir="ltr" data-setdir="false">- Bridge any log4j calls with <span>org.slf4j:log4j-over-slf4j bridge jar</span></div><div dir="ltr" data-setdir="false"><br></div><div dir="ltr" data-setdir="false">Regards,</div><div dir="ltr" data-setdir="false">Deepak.<br></div></div></body></html>