https://bugzilla.redhat.com/show_bug.cgi?id=1443635
--- Comment #49 from Huzaifa S. Sidhpurwala huzaifas@redhat.com --- Statement:
The flaw in Log4j-1.x is now identified by CVE-2019-17571. CVE-2017-5645 has been assigned by MITRE to a similar flaw identified in Log4j-2.x
java-sig-commits@lists.fedoraproject.org