LyXHas LyX been affected by the recent log4j vulnerability?

Information and discussion about LyX, a WYSIWYM editor, available for Linux, Windows and Mac OS X systems.
Post Reply
lkiltz
Posts: 1
Joined: Tue Dec 14, 2021 8:10 pm

Has LyX been affected by the recent log4j vulnerability?

Post by lkiltz »

Dear board members,

Can you tell me if LyX has been affected by the recent log4j vulnerability?

Best regards,
Lothar
Top

Recommended reading 2024:

LaTeXguide.org • LaTeX-Cookbook.net • TikZ.org

NEW: TikZ book now 40% off at Amazon.com for a short time.

User avatar
Ijon Tichy
Posts: 640
Joined: Mon Dec 24, 2018 10:12 am

Has LyX been affected by the recent log4j vulnerability?

Post by Ijon Tichy »

  • What is Log4Shell?
  • What is Log4J?
  • Is LyX a server software, that provides remote (HTTP) access? No, it is a local application.
  • Is LyX a Java application? No, as you can see sourced, it is a C++ application.
  • Does LyX use any Java logging frameworks? No
But if you really fear, that the local C++ application LyX could be affected by Log4Shell, you should not ask other users, but either inspect the code or ask the developers.

(A completely different question would be, whether http://www.lyx.org is somehow affected by Log4Shell. But also nothing the user community could answer.)
Sorry, but I can no longer participate here as the administrator is trampling on my wishes on one of his other platforms. :cry:
Top
Post Reply

Return to “LyX”