Log4j is a tool to help the programmer output log statements to a variety of output targets. Security Fix: * log4j: deserialization of untrusted data in SocketServer For more details about the security issue, including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page listed in the References section.