[jira] [Closed] (PLUTO-786) Upgrade to version Spring Framework 5.3.7 and Spring Security 5.5.1 due to CVE-2021-22112 and CVE-2021-22119

Neil Griffin (Jira) Wed, 14 Jul 2021 13:31:04 -0700


     [ 
https://issues.apache.org/jira/browse/PLUTO-786?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]


Neil Griffin closed PLUTO-786.
------------------------------
    Resolution: Fixed

Fixed in 
[1f6026488c5abf5bb4220c4fd689a85466672775|https://github.com/apache/portals-pluto/commit/1f6026488c5abf5bb4220c4fd689a85466672775]
 [79289471b9f57af4a82d4289c417a69b017938e5 
|https://github.com/apache/portals-pluto/commit/79289471b9f57af4a82d4289c417a69b017938e5].

> Upgrade to version Spring Framework 5.3.7 and Spring Security 5.5.1 due to 
> CVE-2021-22112 and CVE-2021-22119
> ------------------------------------------------------------------------------------------------------------
>
>                 Key: PLUTO-786
>                 URL: https://issues.apache.org/jira/browse/PLUTO-786
>             Project: Pluto
>          Issue Type: Task
>    Affects Versions: 3.1.0
>            Reporter: Neil Griffin
>            Assignee: Neil Griffin
>            Priority: Major
>             Fix For: 3.1.1
>
>
> This task involves upgrading to Spring Framework 5.3.7 and Spring Security 
> 5.5.1 due to 
> [CVE-2021-22112|https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22112]
>  and [CVE-2021-22119| 
> https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22119].



--
This message was sent by Atlassian Jira
(v8.3.4#803005)

[jira] [Closed] (PLUTO-786) Upgrade to version Spring Framework 5.3.7 and Spring Security 5.5.1 due to CVE-2021-22112 and CVE-2021-22119

Reply via email to