[log4j] CVE-2021-45046 and CVE-2021-44228

[peppelinux]

This SDK must be patched against the following vulnerabilities that affects log4j:

• https://mergebase.com/vulnerability/CVE-2021-45046/
• https://mergebase.com/vulnerability/CVE-2021-44228/

See:

• https://github.com/italia/spid-spring/blob/master/spid-spring-integration/pom.xml#L35

Resources:

• log4j-detector

[polarene]

I can do this right away

[polarene]

#23

[peppelinux]

Awesome