[
https://issues.apache.org/jira/browse/AMBARI-26448?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
TengYao Chi updated AMBARI-26448:
---------------------------------
Description:
We're using 6.0.0. Let's update to the latest version (6.0.23)
org.springframework:spring-webmvc: CVE-2024-38816
org.springframework:spring-expression: CVE-2023-20863
org.springframework:spring-web: CVE-2024-22243
was:
We're using 6.0.0. Let's update to the latest version (6.0.23)
org.springframework.security:spring-security-web: CVE-2024-38821
org.springframework.security:spring-security-config: CVE-2023-34034,
CVE-2023-34035
org.springframework:spring-webmvc: CVE-2024-38816
org.springframework:spring-expression: CVE-2023-20863
org.springframework:spring-web: CVE-2024-22243
> Update org.springframework:* to the latest
> ------------------------------------------
>
> Key: AMBARI-26448
> URL: https://issues.apache.org/jira/browse/AMBARI-26448
> Project: Ambari
> Issue Type: Task
> Components: build
> Reporter: Wei-Chiu Chuang
> Assignee: TengYao Chi
> Priority: Major
> Labels: newbie
> Time Spent: 20m
> Remaining Estimate: 0h
>
> We're using 6.0.0. Let's update to the latest version (6.0.23)
> org.springframework:spring-webmvc: CVE-2024-38816
> org.springframework:spring-expression: CVE-2023-20863
> org.springframework:spring-web: CVE-2024-22243
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
---------------------------------------------------------------------
To unsubscribe, e-mail: issues-unsubscr...@ambari.apache.org
For additional commands, e-mail: issues-h...@ambari.apache.org
