From f03f572da7598813b54c24a55fd66bde08563f0b Mon Sep 17 00:00:00 2001
From: Norman Maurer <norman_maurer@apple.com>
Date: Tue, 18 May 2021 11:40:57 +0200
Subject: [PATCH] Upgrade logback dependency due CVE (#11271)

Motivation:

Older version of logback are affected by [CVE-2017-5929]. While its an optional dependency we should upgrade

Modifications:

Upgrade to 1.2.3

Result:

No more reports about using affected logback version
---
 pom.xml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/pom.xml b/pom.xml
index e36d38a5bda..e4104925818 100644
--- a/pom.xml
+++ b/pom.xml
@@ -755,7 +755,7 @@
       <dependency>
         <groupId>ch.qos.logback</groupId>
         <artifactId>logback-classic</artifactId>
-        <version>1.1.7</version>
+        <version>1.2.3</version>
         <scope>test</scope>
       </dependency>