Jackson is not affected by log4j/logback CVEs

(because it does not use either logging framework)

TL;DNR;

Background: CVE-2021–44228

Jackson and Logging: no direct relationship

Coda

Open Source developer, most known for Jackson data processor (nee “JSON library”), author of many, many other OSS libraries for Java, from ClassMate to Woodstox