Apache’s Fix for Log4Shell Can Lead to DoS Attacks

Reports on a patch released by Apache to fix a denial-of-service vulnerability in Log4j, which was discovered after the initial Log4Shell remote code execution flaw.