As the Apache Log4j vulnerability (CVE-2021-44228) was disclosed on Dec 09, 2021, your Rocket Open Systems Software for Z (ZOSS) teams have been actively monitoring the issue and assessing its impact on these products.
It has been determined that our ported tools do not contain a version of Log4j that is impacted by the vulnerability.
Please feel free to reach out to support or product management should you have any questions or concerns regarding any of the open systems ports for z/OS and the Apache Log4j security vulnerability.
------------------------------Jeff CherringtonVice President, Product Management, Z SystemsRocket Software------------------------------