Interesting view.
So, from a technical standpoint I should treat "log4j-jboss-logmanager" as an actively maintained component of WildFly and doesn't fall into the "obsolete" category of Log4J 1.x.
Thus, in theory applications that are using Log4J1.x _via_ log4j-jboss-manager and running on WildFly can continue to remain there and not be worried.
Is that a fair enough statement?
Because a counter point:
"Despite a vastly different implementation", I do see that all "vulnerabilities" that applied to Log4J 1.x were also present in the code here, but might not be executable due to other defaults.
Thanks,
Regards,
Akshay