From 4565a70dc5572f202d68249e33f4066a0bcc3a39 Mon Sep 17 00:00:00 2001
From: Louis Jacomet <louis@gradle.com>
Date: Tue, 14 Dec 2021 21:25:09 +0100
Subject: [PATCH] Mark Log4j 2.15 as vulnerable

Follows publication of
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-45046

Issue #19328
---
 .../org/gradle/internal/logging/util/Log4jBannedVersion.java    | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/subprojects/logging/src/main/java/org/gradle/internal/logging/util/Log4jBannedVersion.java b/subprojects/logging/src/main/java/org/gradle/internal/logging/util/Log4jBannedVersion.java
index c10202cd343a..0ebbd9d00642 100644
--- a/subprojects/logging/src/main/java/org/gradle/internal/logging/util/Log4jBannedVersion.java
+++ b/subprojects/logging/src/main/java/org/gradle/internal/logging/util/Log4jBannedVersion.java
@@ -22,6 +22,6 @@
  */
 public class Log4jBannedVersion {
     public static final String LOG4J2_CORE_COORDINATES = "org.apache.logging.log4j:log4j-core";
-    public static final String LOG4J2_CORE_VULNERABLE_VERSION_RANGE = "[2.0, 2.15[";
+    public static final String LOG4J2_CORE_VULNERABLE_VERSION_RANGE = "[2.0, 2.16)";
     public static final String LOG4J2_CORE_REQUIRED_VERSION = "2.16.0";
 }