Multiple CVE reports published for Spring Data

Engineering | Mark Paluch | April 11, 2018 | ...

Last week, we released Spring Data Ingalls SR11 and Kay SR, which include fixes for the following vulnerabilities:

Spring Boot 1.5.11 (superseded by 1.5.12 due to CVE-2018-1275) and 2.0.1 already pull in the above Spring Data versions, including the fixes that were released last week, and are now also available for use.

Please review the information in the CVE reports and upgrade immediately.

Get the Spring newsletter

Thank you for your interest. Someone will get back to you shortly.

Get ahead

VMware offers training and certification to turbo-charge your progress.

Learn more

Get support

Tanzu Spring Runtime offers support and binaries for OpenJDK™, Spring, and Apache Tomcat® in one simple subscription.

Learn more

Upcoming events

Check out all the upcoming events in the Spring community.

View all