Upgrade log4j to 2.12.3

eyalkoren · eyalkoren · commit 3fc9c541a377 · 2021-12-22T11:40:31.000+02:00
diff --git a/apm-agent-plugins/apm-log-shader-plugin/pom.xml b/apm-agent-plugins/apm-log-shader-plugin/pom.xml
@@ -14,7 +14,7 @@
 
     <properties>
         <apm-agent-parent.base.dir>${project.basedir}/../..</apm-agent-parent.base.dir>
-        <version.ecs.logging>1.1.0</version.ecs.logging>
+        <version.ecs.logging>1.3.0</version.ecs.logging>
     </properties>
 
     <modules>
diff --git a/pom.xml b/pom.xml
@@ -106,8 +106,8 @@
         <!-- this is the last version of log4j that is compatible with Java 7. Due to a known vulnerability
         (https://nvd.nist.gov/vuln/detail/CVE-2020-9488#vulnCurrentDescriptionTitle), the SMTP appender is
          excluded from the build and not packaged into the agent artifacts -->
-        <version.log4j>2.12.2</version.log4j>
-        <version.log4j2-ecs-layout>1.1.0</version.log4j2-ecs-layout>
+        <version.log4j>2.12.3</version.log4j>
+        <version.log4j2-ecs-layout>1.3.0</version.log4j2-ecs-layout>
         <version.spring>5.0.15.RELEASE</version.spring>
         <version.spring-boot>2.2.2.RELEASE</version.spring-boot>
         <version.jetty-server>9.4.11.v20180605</version.jetty-server>
