[
https://issues.apache.org/jira/browse/KARAF-6721?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17109993#comment-17109993
]
ASF subversion and git services commented on KARAF-6721:
--------------------------------------------------------
Commit e922ff35e437f27d96e79ef546ea329ad9ae8ae6 in karaf's branch
refs/heads/karaf-4.2.x from Colm O hEigeartaigh
[ https://gitbox.apache.org/repos/asf?p=karaf.git;h=e922ff3 ]
KARAF-6721 - Update Spring versions due to CVE-2020-5398
(cherry picked from commit df82131b3c04d3cc28d4aae1cef0907a2bd642c4)
> Upgrade to Spring 5.1.14.RELEASE and 5.2.5.RELEASE due to CVE-2020-5398
> -----------------------------------------------------------------------
>
> Key: KARAF-6721
> URL: https://issues.apache.org/jira/browse/KARAF-6721
> Project: Karaf
> Issue Type: Dependency upgrade
> Components: karaf
> Reporter: Colm O hEigeartaigh
> Assignee: Jean-Baptiste Onofré
> Priority: Major
> Fix For: 4.3.0, 4.2.9
>
>
> This task is to update the following Spring versions due to
> [https://nvd.nist.gov/vuln/detail/CVE-2020-5398]
> * Spring 5.1: 5.1.9 -> 5.1.14
> * Spring 5.2: 5.2.2 -> 5.2.5
--
This message was sent by Atlassian Jira
(v8.3.4#803005)
