A serious Java vulnerability just patched by Sun Microsystems may still leave many Java users at risk, security experts say.
There are 17,000 unpatched Log4j packages in the Maven Central ecosystem, leaving massive supply-chain risk on the table from ...