(pulsar) 01/04: [fix][sec] Upgrade Spring to 6.2.12 to remediate CVE-2025-22233 and CVE-2025-41249 (#24903)

lhotari Fri, 31 Oct 2025 04:19:37 -0700

This is an automated email from the ASF dual-hosted git repository.

lhotari pushed a commit to branch branch-4.1
in repository https://gitbox.apache.org/repos/asf/pulsar.git


commit f3cf6aa6dc78b23f995c93f9e8402ab0c66239aa
Author: guptas6est <[email protected]>
AuthorDate: Wed Oct 29 07:53:25 2025 +0000

    [fix][sec] Upgrade Spring to 6.2.12 to remediate CVE-2025-22233 and 
CVE-2025-41249 (#24903)
    
    (cherry picked from commit 38e0fa1da6a3fa9e8f7ba9c079f3b61db8b1d075)
---
 pom.xml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/pom.xml b/pom.xml
index 11509794c1f..b9064c0c6dd 100644
--- a/pom.xml
+++ b/pom.xml
@@ -292,7 +292,7 @@ flexible messaging model and an intuitive client 
API.</description>
     <kotlin-stdlib.version>1.8.20</kotlin-stdlib.version>
     <nsq-client.version>1.0</nsq-client.version>
     <cron-utils.version>9.1.6</cron-utils.version>
-    <spring.version>6.1.14</spring.version>
+    <spring.version>6.2.12</spring.version>
     <apache-http-client.version>4.5.13</apache-http-client.version>
     <apache-httpcomponents.version>4.4.15</apache-httpcomponents.version>
     <jetcd.version>0.7.7</jetcd.version>

(pulsar) 01/04: [fix][sec] Upgrade Spring to 6.2.12 to remediate CVE-2025-22233 and CVE-2025-41249 (#24903)

Reply via email to