Vulnerability in Apache Log4j Library does not affect Globus

[Stuart Martin]

On December 10, 2021, a high severity vulnerability was discovered in the Apache Log4j logging library (CVE-2021-44228). The Globus services and Globus Connect packages do not use or install this library and are unaffected by this vulnerability.

If you have any questions or concerns, please contact sup...@globus.org.