Maybe you have heard of the log4j vulnerability (first discovered on a Microsoft Minecraft server) – log4j is a broadly used library to provide logging functionality. It is also used in openLCA. We would like to inform all openLCA users that the openLCA software is not affected by the recent vulnerability issues discovered for Log4j.

openLCA uses an older version of the library that does not contain the critical vulnerabilities of Log4j 2 and is therefore not affected by them.

Read more about what libraries are affected here: