There is a vulnerability in Spring Framework 5.1.9.RELEASE,upgrade recommended · Issue #836 · microsoft/botbuilder-java · GitHub
Skip to content
This repository was archived by the owner on Dec 4, 2023. It is now read-only.
This repository was archived by the owner on Dec 4, 2023. It is now read-only.

There is a vulnerability in Spring Framework 5.1.9.RELEASE,upgrade recommended #836

Closed
#845
Closed
There is a vulnerability in Spring Framework 5.1.9.RELEASE,upgrade recommended#836
#845
Assignees
tracyboehrer
Labels
Area: SamplesThe issue is related to the product samplesExemptFromDailyDRIReportUse this label to exclude the issue from the DRI report.P0Must Fix. Release-blockertechnical-debtRefactoring, follow best practices, improve test coverage, etc.
Milestone
R12

Description

@QiAnXinCodeSafe
QiAnXinCodeSafe
opened on Oct 28, 2020

botbuilder-java/libraries/bot-integration-spring/pom.xml

Lines 67 to 76 in 662df37

CVE-2020-5398
CVE-2020-5421

Recommended upgrade version:5.1.18.RELEASE

Metadata

Metadata

Assignees

Labels

Area: SamplesThe issue is related to the product samplesExemptFromDailyDRIReportUse this label to exclude the issue from the DRI report.P0Must Fix. Release-blockertechnical-debtRefactoring, follow best practices, improve test coverage, etc.

Type

No type

Fields

No fields configured for issues without a type.

Projects

No projects

Milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions