We're updating the issue view to help you get more done. 

Upgrade to Spring Security 4.2.8 and Spring Framework 4.3.19

Description

See:
https://pivotal.io/security/cve-2018-1199
Today we support Spring Framework 4.3.17 - not affected
and Spring Security 4.2.3 - affected, need to upgrade, recent version is 4.2.8 (Sep 11, 2018).

See:
http://ask.gigaspaces.org/question/51263/is-it-planned-to-fix-security-issue-cve-2018-1199-upgrading-spring-security/

Workaround

None

Acceptance Test

None

Status

Assignee

Alon Shoham

Reporter

Dixson Huie

Labels

None

Priority

Medium

SalesForce Case ID

None

Fix versions

Commitment Version/s

None

Due date

None

Product

XAP

Edition

Open Source

Platform

All