You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@activemq.apache.org by "Jean-Baptiste Onofré (Jira)" <ji...@apache.org> on 2022/10/30 16:20:00 UTC

[jira] [Commented] (AMQ-9086) Spring Framework Vulnerability.

    [ https://issues.apache.org/jira/browse/AMQ-9086?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17626267#comment-17626267 ] 

Jean-Baptiste Onofré commented on AMQ-9086:
-------------------------------------------

ActiveMQ 5.17.x/5.18.x uses Spring 5.3.23 including fixed for these CVEs.

> Spring Framework Vulnerability.
> -------------------------------
>
>                 Key: AMQ-9086
>                 URL: https://issues.apache.org/jira/browse/AMQ-9086
>             Project: ActiveMQ
>          Issue Type: Bug
>            Reporter: Bindu
>            Assignee: Jean-Baptiste Onofré
>            Priority: Major
>
> Spring Framework Vulnerability.
> QID's: 376642,376533,376506
> What is the impact on ActiveMQ for these vulnerabilities?



--
This message was sent by Atlassian Jira
(v8.20.10#820010)