Bug #21237
closed
Upgrade spring-security to 5.5.8 to fix CVE 2022-22978
Added by Vincent MEMBRÉ over 2 years ago.
Updated over 1 year ago.
Description
Spring security 5.5.6 is vulenrable to CVE 2022-22978
- Category set to Security
- Target version set to 7.0.4
- Status changed from New to In progress
- Assignee set to Vincent MEMBRÉ
- Assignee changed from Vincent MEMBRÉ to Alexis Mousset
- Pull Request set to https://github.com/Normation/rudder/pull/4316
- Status changed from In progress to Pending release
- Fix check changed from To do to Checked
- Status changed from Pending release to Released
This bug has been fixed in Rudder 7.0.4 and 7.1.2 which were released today.
- Private changed from Yes to No
Also available in: Atom
PDF
Updated by 
Updated by