[jira] [Updated] (NIFI-12927) Upgrade Spring Security to 6.2.3

David Handermann (Jira) Wed, 20 Mar 2024 16:51:05 -0700


     [ 
https://issues.apache.org/jira/browse/NIFI-12927?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]


David Handermann updated NIFI-12927:
------------------------------------
    Status: Patch Available  (was: Open)

> Upgrade Spring Security to 6.2.3
> --------------------------------
>
>                 Key: NIFI-12927
>                 URL: https://issues.apache.org/jira/browse/NIFI-12927
>             Project: Apache NiFi
>          Issue Type: Improvement
>          Components: Core Framework
>            Reporter: David Handermann
>            Assignee: David Handermann
>            Priority: Major
>             Fix For: 2.0.0-M3
>
>          Time Spent: 10m
>  Remaining Estimate: 0h
>
> Spring Security 
> [6.2.3|https://github.com/spring-projects/spring-security/releases/tag/6.2.3] 
> includes several bug fixes and resolves CVE-2024-22257 related to custom use 
> of the Authenticated Voter class. NiFi does not use Spring Security in this 
> way, but all Spring Security dependencies should be upgraded.



--
This message was sent by Atlassian Jira
(v8.20.10#820010)

[jira] [Updated] (NIFI-12927) Upgrade Spring Security to 6.2.3

Reply via email to