From a56665c31c74fe8292161faa6aea406f24396fc0 Mon Sep 17 00:00:00 2001
From: Dan Timoney <dtimoney@att.com>
Date: Thu, 16 Dec 2021 07:56:45 -0500
Subject: [PATCH] Upgrade to log4j 2.16.0

Upgrade to log4j2 2.16.0 to address log4shell vulnerability

Issue-ID: CCSDK-3556
Signed-off-by: Dan Timoney <dtimoney@att.com>
Change-Id: I005a2030679172288b8195b72ef804feb4f84386
---
 springboot/springboot25/pom.xml | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/springboot/springboot25/pom.xml b/springboot/springboot25/pom.xml
index 97a180f3..5b45515c 100644
--- a/springboot/springboot25/pom.xml
+++ b/springboot/springboot25/pom.xml
@@ -127,6 +127,8 @@
         <jersey.version>2.33</jersey.version>
         <jersey.client.version>2.33</jersey.client.version>
         <jettison.version>1.3.8</jettison.version>
+        <log4j.version>2.16.0</log4j.version>
+        <log4j2.version>2.16.0</log4j2.version>
         <logback.version>1.2.3</logback.version>
         <mariadb.connector.version>2.7.3</mariadb.connector.version>
         <mariadb4j.version>2.4.0</mariadb4j.version>
-- 
2.16.6