[NIFI-9954] Upgrade to Spring Framework 5.3.19 and Spring Boot 2.6.7 - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Improvement
Status: Resolved
Priority: Major
Resolution: Fixed
Affects Version/s: None
Fix Version/s: 1.17.0, 1.16.1
Component/s: Core Framework, NiFi Registry
Labels:
- dependency-upgrade

Description

Spring Framework 5.3.19 includes several bug fixes, including a resolution for CVE-2022-22968, which impacts data binding classes that are not used in regular NiFi framework operations.

Spring Boot 2.6.7 incorporates Spring Framework 5.3.19 and several other transitive dependency upgrades for NiFi Registry.

Spring Security 5.6.3 also includes a small number of improvements over the current version of 5.6.2.

Attachments

Issue Links

links to

GitHub Pull Request #5993

Activity

People

Assignee:: David Handermann

Reporter:: David Handermann

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Dates

Created:: 23/Apr/22 17:37

Updated:: 27/Apr/22 18:40

Resolved:: 25/Apr/22 14:37

Time Tracking

Estimated:

Not Specified

Remaining:

Logged:

0.5h