[jira] [Created] (GEODE-10456) Update spring version for CVE-2024-38819

Ankush Mittal (Jira) Wed, 11 Dec 2024 05:07:24 -0800

Ankush Mittal created GEODE-10456:
-------------------------------------

             Summary: Update spring version for CVE-2024-38819
                 Key: GEODE-10456
                 URL: https://issues.apache.org/jira/browse/GEODE-10456
             Project: Geode
          Issue Type: Bug
    Affects Versions: 1.15.1
            Reporter: Ankush Mittal



As per [https://spring.io/security/cve-2024-38819] spring version upto 5.3.40, 
are impacted due to mentioned CVE. And the fix is available in version 5.3.41.

Geode bundles version 5.3.20 which is vulnerable as per the CVE.

 



--
This message was sent by Atlassian Jira
(v8.20.10#820010)

[jira] [Created] (GEODE-10456) Update spring version for CVE-2024-38819

Reply via email to