[PLUTO-767] Upgrade the Spring Framework from version 2.0.2 to 5.1.5.RELEASE - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Task
Status: Closed
Priority: Major
Resolution: Fixed
Affects Version/s: None
Fix Version/s: 3.1.0
Component/s: portal driver, portlet container
Labels:
None

Description

This issue serves as a task for upgrading the Spring Framework from version 2.0.2 to 5.1.5.RELEASE (the latest version as of the time of this writing for the main org.springframework modules but also for the org.springframework.security groupId modules). This upgrade is necessary because version 2.0.x is no longer supported by Pivotal and also it contains the following known security vulnerabilities:

CVE-2016-5007
CVE-2015-3192
CVE-2018-1275
CVE-2018-1272
CVE-2018-1271
CVE-2018-1270
CVE-2018-1257
CVE-2016-9878

Attachments

Activity

People

Assignee:: Neil Griffin (Inactive)

Reporter:: Neil Griffin (Inactive)

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Dates

Created:: 03/Apr/19 22:36

Updated:: 14/Dec/22 14:37

Resolved:: 04/Apr/19 15:55