[jira] [Resolved] (AMQ-9250) CVE-2023-20860 - Update spring framework to resolve security vulnerability

Jira Wed, 31 May 2023 09:43:15 -0700


     [ 
https://issues.apache.org/jira/browse/AMQ-9250?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]


Jean-Baptiste Onofré resolved AMQ-9250.
---------------------------------------
    Resolution: Duplicate

> CVE-2023-20860 - Update spring framework to resolve security vulnerability
> --------------------------------------------------------------------------
>
>                 Key: AMQ-9250
>                 URL: https://issues.apache.org/jira/browse/AMQ-9250
>             Project: ActiveMQ
>          Issue Type: Dependency upgrade
>          Components: AMQP
>    Affects Versions: 5.18.1
>            Reporter: Ben
>            Assignee: Jean-Baptiste Onofré
>            Priority: Major
>
> Vulnerability scans are reporting 
> [https://nvd.nist.gov/vuln/detail/CVE-2023-20860] exists in ActiveMQ 5.18.1.
> Please update this spring dependency to 5.3.26 (or later) to resolve this 
> CVE.   



--
This message was sent by Atlassian Jira
(v8.20.10#820010)

[jira] [Resolved] (AMQ-9250) CVE-2023-20860 - Update spring framework to resolve security vulnerability

Reply via email to