[ https://issues.apache.org/jira/browse/PLUTO-786?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Neil Griffin closed PLUTO-786. ------------------------------ Resolution: Fixed Fixed in [1f6026488c5abf5bb4220c4fd689a85466672775|https://github.com/apache/portals-pluto/commit/1f6026488c5abf5bb4220c4fd689a85466672775] [79289471b9f57af4a82d4289c417a69b017938e5 |https://github.com/apache/portals-pluto/commit/79289471b9f57af4a82d4289c417a69b017938e5]. > Upgrade to version Spring Framework 5.3.7 and Spring Security 5.5.1 due to > CVE-2021-22112 and CVE-2021-22119 > ------------------------------------------------------------------------------------------------------------ > > Key: PLUTO-786 > URL: https://issues.apache.org/jira/browse/PLUTO-786 > Project: Pluto > Issue Type: Task > Affects Versions: 3.1.0 > Reporter: Neil Griffin > Assignee: Neil Griffin > Priority: Major > Fix For: 3.1.1 > > > This task involves upgrading to Spring Framework 5.3.7 and Spring Security > 5.5.1 due to > [CVE-2021-22112|https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22112] > and [CVE-2021-22119| > https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22119]. -- This message was sent by Atlassian Jira (v8.3.4#803005)