Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

There is a vulnerability in Spring Framework 4.2.5.RELEASE,upgrade recommended #6893

Closed
QiAnXinCodeSafe opened this issue Aug 29, 2022 · 2 comments
Closed

There is a vulnerability in Spring Framework 4.2.5.RELEASE,upgrade recommended #6893

QiAnXinCodeSafe opened this issue Aug 29, 2022 · 2 comments
Assignees
@wangmingliang-ms
Labels
Reason: fixed State: Resolved
Milestone
202209

Comments

@QiAnXinCodeSafe
Copy link

azure-tools-for-java/Utils/AzureWebApplication/build.gradle

Lines 25 to 26 in 4c76977

compile 'org.springframework:spring-web:4.2.5.RELEASE'
compile 'org.springframework:spring-context-support:4.2.5.RELEASE'

CVE-2018-1270 CVE-2016-1000027 CVE-2018-1275 CVE-2022-22965 CVE-2018-1272

Recommended upgrade version:5.3.20
@wangmingliang-ms wangmingliang-ms added this to the 202209 milestone Sep 2, 2022
@wangmingliang-ms wangmingliang-ms self-assigned this Sep 4, 2022
@wangmingliang-ms
Copy link
Collaborator

this sample project has been removed from our repo

@wangmingliang-ms
Copy link
Collaborator

close as it has been fixed since v3.69.0, you can upgrade to the latest and try. Feel free to reopen it when you encounter this error again.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@wangmingliang-ms wangmingliang-ms

Labels
Reason: fixed State: Resolved
Projects
None yet
Milestone
202209
Development

No branches or pull requests
2 participants
@QiAnXinCodeSafe @wangmingliang-ms