From: liamfallon <liam.fallon@est.tech>
Date: Wed, 5 Jan 2022 12:46:27 +0000 (+0000)
Subject: Update log4j version due to security vulnerability
X-Git-Tag: 3.5.1~18
X-Git-Url: https://gerrit.onap.org/r/gitweb?a=commitdiff_plain;h=1daae3e877d5446c7ec5dac4ca5f28ca1637e393;p=policy%2Fparent.git

Update log4j version due to security vulnerability

SECCOM has recommended going to log4j 2.17.1.

Issue-ID: POLICY-3862
Change-Id: I804307f46de9e9f270bbc81b079f8621d1bcba0e
Signed-off-by: liamfallon <liam.fallon@est.tech>
---

diff --git a/integration/pom.xml b/integration/pom.xml
index 101e1ede..c53cbd0e 100644
--- a/integration/pom.xml
+++ b/integration/pom.xml
@@ -2,7 +2,7 @@
   ============LICENSE_START=======================================================
    Copyright (C) 2018 Ericsson. All rights reserved.
    Modifications Copyright (C) 2018-2021 AT&T. All rights reserved.
-   Modifications Copyright (C) 2019-2021 Nordix Foundation.
+   Modifications Copyright (C) 2019-2022 Nordix Foundation.
    Modifications Copyright (C) 2020-2021 Bell Canada.
   ================================================================================
   Licensed under the Apache License, Version 2.0 (the "License");
@@ -360,7 +360,7 @@
             <dependency>
                 <groupId>org.apache.logging.log4j</groupId>
                 <artifactId>log4j-api</artifactId>
-                <version>2.16.0</version>
+                <version>2.17.1</version>
             </dependency>
             <dependency>
                 <groupId>org.apache.logging.log4j</groupId>