[KARAF-6721] Upgrade to Spring 5.1.14.RELEASE and 5.2.5.RELEASE due to CVE-2020-5398 - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Dependency upgrade
Status: Resolved
Priority: Major
Resolution: Fixed
Affects Version/s: None
Fix Version/s: 4.3.0, 4.2.9
Component/s: karaf
Labels:
None

Description

This task is to update the following Spring versions due to

https://nvd.nist.gov/vuln/detail/CVE-2020-5398

Spring 5.1: 5.1.9 -> 5.1.14
Spring 5.2: 5.2.2 -> 5.2.5

Attachments

Activity

People

Assignee:: Jean-Baptiste Onofré

Reporter:: Colm O hEigeartaigh

Votes:: 0 Vote for this issue

Watchers:: 3 Start watching this issue

Dates

Created:: 14/May/20 07:54

Updated:: 18/May/20 07:53

Resolved:: 18/May/20 07:53