Bump to log4j 2.17.0, which fixes CVE-2021-45105. (#8)

More details at https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-45105
grafana · Dec 21, 2021 · 86ca36e · 86ca36e
1 parent 2abbed9
commit 86ca36e
Showing 1 changed file with 1 addition and 1 deletion.
diff --git a/agent/build.gradle b/agent/build.gradle
@@ -22,7 +22,7 @@ repositories {
 def asyncProfilerVersion = "2.0"
 dependencies {
     implementation files("$buildDir/async-profiler/async-profiler.jar")
-    implementation group: 'org.apache.logging.log4j', name: 'log4j-core', version: '2.16.0'
+    implementation group: 'org.apache.logging.log4j', name: 'log4j-core', version: '2.17.0'
 
     testImplementation group: 'org.junit.jupiter', name: 'junit-jupiter-api', version: '5.7.2'
     testRuntimeOnly group: 'org.junit.jupiter', name: 'junit-jupiter-engine', version: '5.7.2'