You are viewing a plain text version of this content. The canonical link for it is here.
Posted to pluto-scm@portals.apache.org by as...@apache.org on 2021/06/23 18:23:56 UTC
[portals-pluto] branch master updated: PLUTO-786 Upgrade to version
Spring Framework 5.3.7 and Spring Security 5.5.0 due to CVE-2021-22112
This is an automated email from the ASF dual-hosted git repository.
asfgriff pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/portals-pluto.git
The following commit(s) were added to refs/heads/master by this push:
new 1f60264 PLUTO-786 Upgrade to version Spring Framework 5.3.7 and Spring Security 5.5.0 due to CVE-2021-22112
1f60264 is described below
commit 1f6026488c5abf5bb4220c4fd689a85466672775
Author: Neil Griffin <ne...@gmail.com>
AuthorDate: Wed Jun 23 14:14:05 2021 -0400
PLUTO-786 Upgrade to version Spring Framework 5.3.7 and Spring Security 5.5.0 due to CVE-2021-22112
---
pom.xml | 9 +++++----
1 file changed, 5 insertions(+), 4 deletions(-)
diff --git a/pom.xml b/pom.xml
index 39d8dd3..208d95b 100644
--- a/pom.xml
+++ b/pom.xml
@@ -245,7 +245,8 @@ generate mailto links. -->
<commons-digester.version>1.8</commons-digester.version>
<commons-cli.version>1.0</commons-cli.version>
<slf4j.version>1.7.5</slf4j.version>
- <springframework.version>5.1.5.RELEASE</springframework.version>
+ <springframework.version>5.3.7</springframework.version>
+ <springsecurity.version>5.5.0</springsecurity.version>
<maven.version>2.0.5</maven.version>
<ant.version>1.6.5</ant.version>
<commons-lang.scope>provided</commons-lang.scope>
@@ -553,17 +554,17 @@ generate mailto links. -->
<dependency>
<groupId>org.springframework.security</groupId>
<artifactId>spring-security-config</artifactId>
- <version>${springframework.version}</version>
+ <version>${springsecurity.version}</version>
</dependency>
<dependency>
<groupId>org.springframework.security</groupId>
<artifactId>spring-security-core</artifactId>
- <version>${springframework.version}</version>
+ <version>${springsecurity.version}</version>
</dependency>
<dependency>
<groupId>org.springframework.security</groupId>
<artifactId>spring-security-web</artifactId>
- <version>${springframework.version}</version>
+ <version>${springsecurity.version}</version>
</dependency>
<dependency>
<groupId>org.thymeleaf</groupId>