The new Log4j vulnerability is similar to Log4Shell in that it also affects the logging library, but this DoS flaw has to do with Context Map lookups, not JNDI.
https://threatpost.com/third-log4j-bug-dos-apache-patch/177159/
Company finally rolls out the complete fix this week for an RCE flaw affecting some 800,000 devices that could result in crashes or prevent users from connecting to corporate resources.
https://threatpost.com/sonicwall-botches-critical-vpn-bug/167152/