Upgrade logback dependency due CVE (#11271)
Motivation: Older version of logback are affected by [CVE-2017-5929]. While its an optional dependency we should upgrade Modifications: Upgrade to 1.2.3 Result: No more reports about using affected logback version
This commit is contained in:
parent
cc28ec2b92
commit
6f193193ea
2
pom.xml
2
pom.xml
@ -811,7 +811,7 @@
|
|||||||
<dependency>
|
<dependency>
|
||||||
<groupId>ch.qos.logback</groupId>
|
<groupId>ch.qos.logback</groupId>
|
||||||
<artifactId>logback-classic</artifactId>
|
<artifactId>logback-classic</artifactId>
|
||||||
<version>1.1.7</version>
|
<version>1.2.3</version>
|
||||||
<scope>test</scope>
|
<scope>test</scope>
|
||||||
</dependency>
|
</dependency>
|
||||||
|
|
||||||
|
Loading…
Reference in New Issue
Block a user