Upgrade spring-core dependency to mitigate CVE-2023-20863 #14949

lukaseder · 2023-04-18T16:38:07Z

CVE-2023-20863 has been published, and our spring-core dependency needs to be upgraded to 5.3.27

The text was updated successfully, but these errors were encountered:

lukaseder · 2023-04-18T16:48:34Z

Fixed in jOOQ 3.19.0, 3.18.4 (#14950), 3.17.13 (#14951), and 3.16.19 (#14952)

lukaseder added T: Defect C: Functionality P: High E: All Editions labels Apr 18, 2023

lukaseder added this to the Version 3.19.0 milestone Apr 18, 2023

lukaseder added this to To do in 3.19 Other improvements via automation Apr 18, 2023

lukaseder added a commit that referenced this issue Apr 18, 2023

[#14949] Upgrade spring-core dependency to mitigate

d48a444

CVE-2023-20863

lukaseder added a commit that referenced this issue Apr 18, 2023

[#14949] Upgrade spring-core dependency to mitigate

0da95ab

CVE-2023-20863

lukaseder added a commit that referenced this issue Apr 18, 2023

[#14949] Upgrade spring-core dependency to mitigate

2488ca4

CVE-2023-20863

lukaseder added C: Build and removed C: Functionality labels Apr 18, 2023

lukaseder closed this as completed Apr 18, 2023

3.19 Other improvements automation moved this from To do to Done Apr 18, 2023

lukaseder added the R: Fixed label Apr 18, 2023

lukaseder added a commit that referenced this issue Apr 18, 2023

[#14949] Upgrade spring-core dependency to mitigate

be01e69

CVE-2023-20863

Provide feedback