Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Fix CVE-2022-22978 by upgrading spring-security to 5.6.4 #29304

Merged
merged 5 commits into from
Jun 8, 2022
Merged

Fix CVE-2022-22978 by upgrading spring-security to 5.6.4 #29304

merged 5 commits into from
Jun 8, 2022

Conversation

chenrujun
Copy link

@chenrujun chenrujun commented Jun 8, 2022
edited
Loading

Description

Fix CVE-2022-22978 by upgrading spring-security to 5.6.4.

All SDK Contribution checklist:

  • The pull request does not introduce [breaking changes]
  • CHANGELOG is updated for new features, bug fixes or other significant changes.
  • I have read the contribution guidelines.

General Guidelines and Best Practices

  • Title of the pull request is clear and informative.
  • There are a small number of commits, each of which have an informative message. This means that previously merged commits do not appear in the history of the PR. For more information on cleaning up the commits in your PR, see this page.

Testing Guidelines

  • Pull request includes test coverage for the included changes.

@ghost ghost added the azure-spring All azure-spring related issues label Jun 8, 2022
chenrujun
chenrujun commented Jun 8, 2022
View reviewed changes
Copy link
Author

@chenrujun chenrujun left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM.

@chenrujun chenrujun self-assigned this Jun 8, 2022
@chenrujun chenrujun added Client This issue points to a problem in the data-plane of the library. feature-request This issue requires a new behavior in the product in order be resolved. azure-spring-aad Spring active directory related issues. azure-spring-aad-b2c Spring active directory b2c related issues. labels Jun 8, 2022
@chenrujun chenrujun added this to the [2022] July milestone Jun 8, 2022
chenrujun
chenrujun commented Jun 8, 2022
View reviewed changes
Copy link
Author

@chenrujun chenrujun left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM.

@chenrujun
Copy link
Author

Hi, @saragluna , please help to review this PR.

@chenrujun chenrujun changed the title Fix CVE-2022-22978 by upgrading spring-security to 5.6.4. Fix CVE-2022-22978 by upgrading spring-security to 5.6.4 Jun 8, 2022
@azure-sdk
Copy link
Collaborator

API change check

API changes are not detected in this pull request.

@chenrujun chenrujun merged commit 3e3c876 into Azure:main Jun 8, 2022
@chenrujun chenrujun deleted the Fix_CVE-2022-22978_by_upgrading_spring-security_to_5.6.4 branch June 8, 2022 06:50
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@saragluna saragluna saragluna approved these changes

@alzimmermsft alzimmermsft Awaiting requested review from alzimmermsft alzimmermsft is a code owner

@samvaity samvaity Awaiting requested review from samvaity samvaity is a code owner

@g2vinay g2vinay Awaiting requested review from g2vinay g2vinay is a code owner

@JonathanGiles JonathanGiles Awaiting requested review from JonathanGiles JonathanGiles is a code owner

@backwind1233 backwind1233 Awaiting requested review from backwind1233

@hui1110 hui1110 Awaiting requested review from hui1110

@jialigit jialigit Awaiting requested review from jialigit

@Netyyyy Netyyyy Awaiting requested review from Netyyyy Netyyyy is a code owner

@stliu stliu Awaiting requested review from stliu

@yiliuTo yiliuTo Awaiting requested review from yiliuTo

Assignees

@chenrujun chenrujun

Labels
azure-spring All azure-spring related issues azure-spring-aad Spring active directory related issues. azure-spring-aad-b2c Spring active directory b2c related issues. Client This issue points to a problem in the data-plane of the library. feature-request This issue requires a new behavior in the product in order be resolved.
Projects
Spring Cloud Azure
Status: Done
Milestone
2022-07
Development

Successfully merging this pull request may close these issues.
4 participants
@chenrujun @azure-sdk @saragluna @rujche