Update log4j version due to security vulnerability

SECCOM has recommended going to log4j 2.17.1.

Issue-ID: POLICY-3862
Change-Id: I486d89bc467f92c4ac8f43b57b3829aa459fc550
Signed-off-by: liamfallon <liam.fallon@est.tech>

diff --git a/integration/pom.xml b/integration/pom.xml
index 6053e61..a02a3ea 100644 (file)
--- a/integration/pom.xml
+++ b/integration/pom.xml
@@ -2,7 +2,7 @@
   ============LICENSE_START=======================================================
    Copyright (C) 2018 Ericsson. All rights reserved.
    Modifications Copyright (C) 2018-2021 AT&T. All rights reserved.
-   Modifications Copyright (C) 2019-2021 Nordix Foundation.
+   Modifications Copyright (C) 2019-2022 Nordix Foundation.
    Modifications Copyright (C) 2020-2021 Bell Canada.
   ================================================================================
   Licensed under the Apache License, Version 2.0 (the "License");
@@ -342,7 +342,7 @@
             <dependency>
                 <groupId>org.apache.logging.log4j</groupId>
                 <artifactId>log4j-api</artifactId>
-                <version>2.16.0</version>
+                <version>2.17.1</version>
             </dependency>
             <dependency>
                 <groupId>org.apache.logging.log4j</groupId>