Bump log4j2 to 2.17.0

author Robert Varga <robert.varga@pantheon.tech>

Sat, 18 Dec 2021 12:23:45 +0000 (13:23 +0100)

committer Robert Varga <robert.varga@pantheon.tech>

Sat, 18 Dec 2021 12:24:09 +0000 (13:24 +0100)
author Robert Varga <robert.varga@pantheon.tech>
Sat, 18 Dec 2021 12:23:45 +0000 (13:23 +0100)
committer Robert Varga <robert.varga@pantheon.tech>
Sat, 18 Dec 2021 12:24:09 +0000 (13:24 +0100)
diff --git a/odlparent-dependency-check/pom.xml b/odlparent-dependency-check/pom.xml

index be4cbbf0e4abfa121ed43dc09be95f7ea01f6a2a..e0a0df9d795a2823f5f4b7e44a7b7163c4f4dafb 100644 (file)
--- a/odlparent-dependency-check/pom.xml
+++ b/odlparent-dependency-check/pom.xml
@@ -197,7 +197,7 @@
              <groupId>org.apache.logging.log4j</groupId>
              <artifactId>log4j-bom</artifactId>
              <type>pom</type>
-            <version>2.16.0</version>
+            <version>2.17.0</version>
          </dependency>
          <dependency>
              <groupId>org.awaitility</groupId>
diff --git a/odlparent-lite/pom.xml b/odlparent-lite/pom.xml

index 394230a61cb49320c713b35e715b354d906074df..8e97d1a8cf17c5eb4d88cdc636342d03bdad1634 100644 (file)
--- a/odlparent-lite/pom.xml
+++ b/odlparent-lite/pom.xml
@@ -380,7 +380,8 @@
                    <excludes>
                      <!-- https://nvd.nist.gov/vuln/detail/CVE-2021-44228: at least 2.15.0 -->
                      <!-- https://nvd.nist.gov/vuln/detail/CVE-2021-45046: at least 2.16.0 -->
-                    <exclude>org.apache.logging.log4j:log4j-core:(,2.16.0)</exclude>
+                    <!-- https://nvd.nist.gov/vuln/detail/CVE-2021-45105: at least 2.17.0 -->
+                    <exclude>org.apache.logging.log4j:log4j-core:(,2.17.0)</exclude>
                    </excludes>
                  </bannedDependencies>
                </rules>
diff --git a/odlparent/pom.xml b/odlparent/pom.xml

index 7913e8c8d012a07501b3ec8a9370dadc8fa617c2..f13432f63f6921816678d18cc58ecc24d7469df1 100644 (file)
--- a/odlparent/pom.xml
+++ b/odlparent/pom.xml
@@ -241,7 +241,7 @@
        <dependency>
          <groupId>org.apache.logging.log4j</groupId>
          <artifactId>log4j-bom</artifactId>
-        <version>2.16.0</version>
+        <version>2.17.0</version>
          <scope>import</scope>
          <type>pom</type>
        </dependency>
author	Robert Varga <robert.varga@pantheon.tech>
	Sat, 18 Dec 2021 12:23:45 +0000 (13:23 +0100)
committer	Robert Varga <robert.varga@pantheon.tech>
	Sat, 18 Dec 2021 12:24:09 +0000 (13:24 +0100)
odlparent-dependency-check/pom.xml		patch \| blob \| history
odlparent-lite/pom.xml		patch \| blob \| history
odlparent/pom.xml		patch \| blob \| history