From 55789dbd5249392ffbca743a3c627b7819b3aa3a Mon Sep 17 00:00:00 2001
From: Norman Maurer <norman_maurer@apple.com>
Date: Tue, 18 May 2021 08:30:00 +0200
Subject: [PATCH] Upgrade logback dependency due CVE

Motivation:

Older version of logback are affected by [CVE-2017-5929]. While its an optional dependency we should upgrade

Modifications:

Upgrade to 1.2.3

Result:

No more reports about using affected logback version
---
 pom.xml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/pom.xml b/pom.xml
index e677a89ff05..65bf96fb69c 100644
--- a/pom.xml
+++ b/pom.xml
@@ -811,7 +811,7 @@
       <dependency>
         <groupId>ch.qos.logback</groupId>
         <artifactId>logback-classic</artifactId>
-        <version>1.1.7</version>
+        <version>1.2.3</version>
         <scope>test</scope>
       </dependency>