From 6f193193ea757f6d6cde0fcc45bd0ebb0088f9de Mon Sep 17 00:00:00 2001 From: Norman Maurer Date: Tue, 18 May 2021 11:40:57 +0200 Subject: [PATCH] Upgrade logback dependency due CVE (#11271) Motivation: Older version of logback are affected by [CVE-2017-5929]. While its an optional dependency we should upgrade Modifications: Upgrade to 1.2.3 Result: No more reports about using affected logback version --- pom.xml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/pom.xml b/pom.xml index e677a89ff0..65bf96fb69 100644 --- a/pom.xml +++ b/pom.xml @@ -811,7 +811,7 @@ ch.qos.logback logback-classic - 1.1.7 + 1.2.3 test