Update Spring Framework to 5.3.18 and 5.2.20.RELEASE #1163

btkatoufm · 2022-04-04T09:49:42Z

Description

Support CVE-2022-22965.

Update Spring Framework to 5.3.18
Update Spring Framework to 5.2.20.RELEASE.

Possible Solution

Set the following for terasoluna-gfw-parent/pom.xml

<dependency>
  <groupId>org.springframework</groupId>
  <artifactId>spring-framework-bom</artifactId>
  <version>${org.springframework.version}</version>
  <type>pom</type>
  <scope>import</scope>
</dependency>
<!-- omitted -->
<org.springframework.version>5.3.18</org.springframework.version>
or
<org.springframework.version>5.2.20.RELEASE</org.springframework.version>

Affect versions

5.7.1.RELEASE
5.7.0.RELEASE
5.6.2.RELEASE
5.6.1.RELEASE
5.6.0.RELEASE

Issue links

Links to related issues.

#xx

The text was updated successfully, but these errors were encountered:

btkatoufm · 2022-04-08T00:46:08Z

Support CVE-2022-22965.
The version of TERASOLUNA is as follows

5.7.1.RELEASE → 5.7.1.SP1.RELEASE (Spring Framework 5.3.13 → 5.3.18)
https://github.com/terasolunaorg/terasoluna-gfw/releases/tag/5.7.1.SP1.RELEASE
5.7.0.RELEASE → 5.7.0.SP1.RELEASE (Spring Framework 5.3.2 → 5.3.18)
https://github.com/terasolunaorg/terasoluna-gfw/releases/tag/5.7.0.SP1.RELEASE
5.6.2.RELEASE → 5.6.2.SP1.RELEASE (Spring Framework 5.2.12.RELEASE → 5.2.20.RELEASE)
https://github.com/terasolunaorg/terasoluna-gfw/releases/tag/5.6.2.SP1.RELEASE
5.6.1.RELEASE → 5.6.1.SP1.RELEASE (Spring Framework 5.2.3.RELEASE → 5.2.20.RELEASE)
https://github.com/terasolunaorg/terasoluna-gfw/releases/tag/5.6.1.SP1.RELEASE
5.6.0.RELEASE → 5.6.0.SP1.RELEASE (Spring Framework 5.2.3.RELEASE → 5.2.20.RELEASE)
https://github.com/terasolunaorg/terasoluna-gfw/releases/tag/5.6.0.SP1.RELEASE

btkatoufm added version: 5.6.0 type: vulnerability version: 5.6.1 version: 5.7.0 version: 5.6.2 version: 5.7.1 labels Apr 4, 2022

btkatoufm self-assigned this Apr 4, 2022

btkatoufm added a commit that referenced this issue Apr 4, 2022

Update Spring Framework to 5.3.18. #1163

4bf93a4

btkatoufm added a commit that referenced this issue Apr 5, 2022

Update Spring Framework to 5.3.18. #1163

9733231

btkatoufm added a commit that referenced this issue Apr 5, 2022

Update Spring Framework to 5.2.20.RELEASE. #1163

c481564

btkatoufm added a commit that referenced this issue Apr 5, 2022

Update Spring Framework to 5.2.20.RELEASE. #1163

d737e6e

btkatoufm added a commit that referenced this issue Apr 5, 2022

Update Spring Framework to 5.2.20.RELEASE. #1163

d33f451

btiwahorisu removed version: 5.6.0 version: 5.6.1 version: 5.7.0 version: 5.6.2 version: 5.7.1 labels Apr 7, 2022

btkatoufm added version: 5.6.0.SP1 version: 5.6.1.SP1 version: 5.6.2.SP1 version: 5.7.0.SP1 version: 5.7.1.SP1 labels Apr 8, 2022

btkatoufm closed this as completed Apr 8, 2022

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Update Spring Framework to 5.3.18 and 5.2.20.RELEASE #1163

Update Spring Framework to 5.3.18 and 5.2.20.RELEASE #1163

btkatoufm commented Apr 4, 2022

btkatoufm commented Apr 8, 2022

Update Spring Framework to 5.3.18 and 5.2.20.RELEASE #1163

Update Spring Framework to 5.3.18 and 5.2.20.RELEASE #1163

Comments

btkatoufm commented Apr 4, 2022

Description

Possible Solution

Affect versions

Issue links

btkatoufm commented Apr 8, 2022