CVE-2021-44832: bumping log4j version to 2.17.1 (#3434)
diff --git a/pom.xml b/pom.xml
index ddaad4f..62d3525 100644
--- a/pom.xml
+++ b/pom.xml
@@ -246,7 +246,7 @@
<guava.version>16.0.1</guava.version>
<netty.version>3.9.9.Final</netty.version>
<log4j-over-slf4j.version>1.6.6</log4j-over-slf4j.version>
- <log4j.version>2.17.0</log4j.version>
+ <log4j.version>2.17.1</log4j.version>
<slf4j.version>1.7.21</slf4j.version>
<metrics.version>3.1.0</metrics.version>
<clojure.tools.nrepl.version>0.2.3</clojure.tools.nrepl.version>