From 8dd6dbfe16a3157b8780c2dc9712d1c0eeb56018 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Sat, 24 Jan 2026 02:41:27 +0000
Subject: [PATCH] fix: spring-security-mvc-socket/pom.xml to reduce
 vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JAVA-ORGHIBERNATE-15038759
- https://snyk.io/vuln/SNYK-JAVA-CHQOSLOGBACK-15062482
---
 spring-security-mvc-socket/pom.xml | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/spring-security-mvc-socket/pom.xml b/spring-security-mvc-socket/pom.xml
index c1715d36d271..86364bad632d 100644
--- a/spring-security-mvc-socket/pom.xml
+++ b/spring-security-mvc-socket/pom.xml
@@ -70,7 +70,7 @@
         <dependency>
             <groupId>org.hibernate</groupId>
             <artifactId>hibernate-core</artifactId>
-            <version>5.2.10.Final</version>
+            <version>5.3.38.Final</version>
         </dependency>
         <dependency>
             <groupId>com.h2database</groupId>
@@ -104,7 +104,7 @@
         <dependency>
             <groupId>ch.qos.logback</groupId>
             <artifactId>logback-classic</artifactId>
-            <version>1.2.3</version>
+            <version>1.5.25</version>
         </dependency>
 
         <!-- Servlet -->