[jira] [Created] (RANGER-3691) Upgrade spring to 5.3.18 CVE-2022-22965

kirby zhou (Jira) Thu, 31 Mar 2022 23:16:06 -0700

kirby zhou created RANGER-3691:
----------------------------------

             Summary: Upgrade spring to 5.3.18 CVE-2022-22965
                 Key: RANGER-3691
                 URL: https://issues.apache.org/jira/browse/RANGER-3691
             Project: Ranger
          Issue Type: Bug
          Components: admin, kms
            Reporter: kirby zhou



[https://tanzu.vmware.com/security/cve-2022-22965|https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22965]

[https://github.com/spring-projects/spring-framework/releases]

 

Spring has a new 0day Remote-Code-Execution problem, related to spring-beans 
and JDK9+

Fixed at spring 5.3.18 / 5.2.20

 



--
This message was sent by Atlassian Jira
(v8.20.1#820001)

[jira] [Created] (RANGER-3691) Upgrade spring to 5.3.18 CVE-2022-22965

Reply via email to