About Apache Log4j Security Vulnerabilities,The official recommendation is to upgrade 7.17.4. And We can see the Release notes:BSERV-13087 - Remove unused log4j-core and update log4j-api to 2.16.0
But our company's security management requires at least version 2.17
. When will there be an upgrade to 2.17 or 2.17.1