From e650960d087229f3857696bd5bbcd5c1fd80c1a3 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Thu, 29 Jan 2026 07:38:18 +0000
Subject: [PATCH] fix: pom.xml & undertow/pom.xml to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JAVA-IOUNDERTOW-15053841
- https://snyk.io/vuln/SNYK-JAVA-IOUNDERTOW-14908846
- https://snyk.io/vuln/SNYK-JAVA-CHQOSLOGBACK-15062482
---
 pom.xml          | 6 +++---
 undertow/pom.xml | 2 +-
 2 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/pom.xml b/pom.xml
index 197e946974c6..72a940eafb3e 100644
--- a/pom.xml
+++ b/pom.xml
@@ -262,7 +262,7 @@
                                         </goals>
                                     </pluginExecutionFilter>
                                     <action>
-                                        <ignore></ignore>
+                                        <ignore/>
                                     </action>
                                 </pluginExecution>
                                 <pluginExecution>
@@ -281,7 +281,7 @@
                                         </goals>
                                     </pluginExecutionFilter>
                                     <action>
-                                        <ignore></ignore>
+                                        <ignore/>
                                     </action>
                                 </pluginExecution>
                             </pluginExecutions>
@@ -1445,7 +1445,7 @@
 
         <!-- logging -->
         <org.slf4j.version>1.7.32</org.slf4j.version>
-        <logback.version>1.2.6</logback.version>
+        <logback.version>1.5.25</logback.version>
 
         <!-- plugins -->
         <maven-surefire-plugin.version>2.22.2</maven-surefire-plugin.version>
diff --git a/undertow/pom.xml b/undertow/pom.xml
index bed9c905c228..ec308c6f475f 100644
--- a/undertow/pom.xml
+++ b/undertow/pom.xml
@@ -55,7 +55,7 @@
     </build>
 
     <properties>
-        <undertow-servlet.version>1.4.18.Final</undertow-servlet.version>
+        <undertow-servlet.version>2.3.21.Final</undertow-servlet.version>
         <maven-shade-plugin.version>2.4.3</maven-shade-plugin.version>
         <maven-jar-plugin.version>3.0.2</maven-jar-plugin.version>
     </properties>