We just want to let you know that neither JDownloader nor any other of our projects make use of log4j and thus are NOT affected by this security vulnerability. We've also posted this information here.