USN-4495-1: Apache Log4j vulnerability

USN-4495-1: Apache Log4j vulnerability

It was discovered that Apache Log4j does not properly deserialize
untrusted data. An attacker could possibly use this issue to remotely
execute arbitrary code. (CVE-2019-17571)
Source: USN-4495-1: Apache Log4j vulnerability