You are viewing a plain text version of this content. The canonical link for it is here.
Posted to pluto-dev@portals.apache.org by "Neil Griffin (Jira)" <ji...@apache.org> on 2021/07/14 20:32:00 UTC
[jira] [Comment Edited] (PLUTO-786) Upgrade to version Spring
Framework 5.3.7 and Spring Security 5.5.1 due to CVE-2021-22112 and
CVE-2021-22119
[ https://issues.apache.org/jira/browse/PLUTO-786?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17380854#comment-17380854 ]
Neil Griffin edited comment on PLUTO-786 at 7/14/21, 8:31 PM:
--------------------------------------------------------------
Fixed in [1f6026488c5abf5bb4220c4fd689a85466672775|https://github.com/apache/portals-pluto/commit/1f6026488c5abf5bb4220c4fd689a85466672775] and [79289471b9f57af4a82d4289c417a69b017938e5|https://github.com/apache/portals-pluto/commit/79289471b9f57af4a82d4289c417a69b017938e5].
was (Author: ngriffin7a):
Fixed in [1f6026488c5abf5bb4220c4fd689a85466672775|https://github.com/apache/portals-pluto/commit/1f6026488c5abf5bb4220c4fd689a85466672775] [79289471b9f57af4a82d4289c417a69b017938e5 |https://github.com/apache/portals-pluto/commit/79289471b9f57af4a82d4289c417a69b017938e5].
> Upgrade to version Spring Framework 5.3.7 and Spring Security 5.5.1 due to CVE-2021-22112 and CVE-2021-22119
> ------------------------------------------------------------------------------------------------------------
>
> Key: PLUTO-786
> URL: https://issues.apache.org/jira/browse/PLUTO-786
> Project: Pluto
> Issue Type: Task
> Affects Versions: 3.1.0
> Reporter: Neil Griffin
> Assignee: Neil Griffin
> Priority: Major
> Fix For: 3.1.1
>
>
> This task involves upgrading to Spring Framework 5.3.7 and Spring Security 5.5.1 due to [CVE-2021-22112|https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22112] and [CVE-2021-22119| https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22119].
--
This message was sent by Atlassian Jira
(v8.3.4#803005)