You may have seen the recent news regarding a new critical security issue known as Log4Shell.  This is a vulnerability in the widely used logging tool Log4j.

Our R&D department have investigated and we can confirm that no Equinox components are affected by this issue.

However you may need to check operational servers, especially if they use Apache, and or include java components in software running on the machine, to ensure that they do not use the Log4j library.  If they do, we recommend you contact the software provider for an updated version.

You can find more information on the vulnerability here.