Bump to log4j 2.17.1, which fixes CVE-2021-44832. (#9)

grafana · Jan 14, 2022 · 66cc8f7 · 66cc8f7
1 parent 86ca36e
commit 66cc8f7
Showing 1 changed file with 1 addition and 1 deletion.
diff --git a/agent/build.gradle b/agent/build.gradle
@@ -22,7 +22,7 @@ repositories {
 def asyncProfilerVersion = "2.0"
 dependencies {
     implementation files("$buildDir/async-profiler/async-profiler.jar")
-    implementation group: 'org.apache.logging.log4j', name: 'log4j-core', version: '2.17.0'
+    implementation group: 'org.apache.logging.log4j', name: 'log4j-core', version: '2.17.1'
 
     testImplementation group: 'org.junit.jupiter', name: 'junit-jupiter-api', version: '5.7.2'
     testRuntimeOnly group: 'org.junit.jupiter', name: 'junit-jupiter-engine', version: '5.7.2'