Sure, Apache got a patch out fast when the Log4j logging library vulnerability – aka Javageddon or “up there with Shellshock” – exploded last week. But emergency patches take days (best-case scenario) or weeks to install:
Read full article on Threat Post