Security fixes for CVE-2025-54812 & CVE-2025-54813 from upstream: (!3) · Merge requests · Debian / log4cxx · GitLab

Lukas Märdian requested to merge slyon/log4cxx:debian/bookworm_2025-54812_CVE-2025-54813 into debian/bookworm Sep 29, 2025

d/p/CVE-2025-54812*: (Closes: #1111879)
- Escape any logger name '&' or '"' in html attribute data (PR#509)
- Escape any thread name '&' or '"' in html attribute data (PR#514)
d/p/CVE-2025-54813*: (Closes: #1111881)
- Escape control characters in JSONLayout data (PR#512)