From 2f6c03b602c8eb4f31ba6e487365a79004fae79b Mon Sep 17 00:00:00 2001
From: Dan Timoney <dtimoney@att.com>
Date: Mon, 13 Dec 2021 15:59:55 -0500
Subject: Upgrade log4j to version 2.15.0

Update log4j version to address known vulnerability

Issue-ID: CCSDK-3556
Signed-off-by: Dan Timoney <dtimoney@att.com>
Change-Id: Ie0840a7f45257092c93bd5dbb23d197a1de491b0
---
 springboot/spring-boot-setup/src/main/resources/pom-template.xml | 2 ++
 1 file changed, 2 insertions(+)

(limited to 'springboot/spring-boot-setup')

diff --git a/springboot/spring-boot-setup/src/main/resources/pom-template.xml b/springboot/spring-boot-setup/src/main/resources/pom-template.xml
index 0271683d..25b52763 100644
--- a/springboot/spring-boot-setup/src/main/resources/pom-template.xml
+++ b/springboot/spring-boot-setup/src/main/resources/pom-template.xml
@@ -130,6 +130,8 @@
         <jersey.version>${springboot.jersey.version}</jersey.version>
         <jersey.client.version>${springboot.jersey.version}</jersey.client.version>
         <jettison.version>1.3.8</jettison.version>
+        <log4j.version>2.15.0</log4j.version>
+        <log4j2.version>2.15.0</log4j2.version>
         <logback.version>1.2.3</logback.version>
         <mariadb.connector.version>2.7.3</mariadb.connector.version>
         <mariadb4j.version>2.4.0</mariadb4j.version>
-- 
cgit 1.2.3-korg