From a38a4ca280d05a5e2e4db1c937f4d5afe2ec1de0 Mon Sep 17 00:00:00 2001
From: Karsten Schnitter <k.schnitter@sap.com>
Date: Sun, 12 Dec 2021 16:21:28 +0100
Subject: [PATCH] CVE-2021-44228 Upgrade Log4j2 to 2.15.0

This change integrates a major fix for an exploit in log4j2.
---
 pom.xml        | 2 +-
 sample/pom.xml | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/pom.xml b/pom.xml
index 38347877..46e459c1 100644
--- a/pom.xml
+++ b/pom.xml
@@ -169,7 +169,7 @@
         <jackson-jr.version>2.10.1</jackson-jr.version>
         <slf4j.version>1.7.30</slf4j.version>
         <logback.version>1.2.3</logback.version>
-        <log4j2.version>2.13.3</log4j2.version>
+        <log4j2.version>2.15.0</log4j2.version>
         <buildnumber.plugin.version>1.4</buildnumber.plugin.version>
         <source.plugin.version>3.2.1</source.plugin.version>
         <jar.plugin.version>3.1.0</jar.plugin.version>
diff --git a/sample/pom.xml b/sample/pom.xml
index 87f0341d..c00655a1 100644
--- a/sample/pom.xml
+++ b/sample/pom.xml
@@ -12,7 +12,7 @@
 
     <properties>
         <tomcat.version>8.0.39</tomcat.version>
-        <log4j2.version>2.13.3</log4j2.version>
+        <log4j2.version>2.15.0</log4j2.version>
         <logback.version>1.1.3</logback.version>
         <jackson.version>2.5.4</jackson.version>
         <slf4j.version>1.7.12</slf4j.version>