Updating log4j2 version to 2.17.0 to mitigate CVE-2021-45105

saketjajoo · saketjajoo · commit 09510f82c667 · 2021-12-20T16:29:42.000+05:30
diff --git a/pom.xml b/pom.xml
@@ -139,14 +139,14 @@
       <groupId>org.apache.logging.log4j</groupId>
       <artifactId>log4j-api</artifactId>
       <!-- Matches Hive, the primary user of log4j2 -->
-      <version>2.16.0</version>
+      <version>2.17.0</version>
       <scope>compile</scope>
     </dependency>
     <dependency>
       <groupId>org.apache.logging.log4j</groupId>
       <artifactId>log4j-core</artifactId>
       <!-- Matches Hive, the primary user of log4j2 -->
-      <version>2.16.0</version>
+      <version>2.17.0</version>
       <scope>compile</scope>
     </dependency>
     <dependency>
