Get ahead
VMware offers training and certification to turbo-charge your progress.
Learn moreSpring Project Vulnerability Reports Published
The following CVEs have been published today:
- CVE-2018-1257 for Spring Framework 5.0.6, 4.3.17.
- CVE-2018-1258 for Spring Security 5.0.5.
- CVE-2018-1259 for Spring Data Ingalls SR12, Kay SR7.
- CVE-2018-1260 for Spring Security OAuth 2.3.3, 2.2.2, 2.1.2, 2.0.15.
- CVE-2018-1261 for Spring Integration “Zip” extension 1.0.1.
Please, review the information in the CVE reports and upgrade immediately.
Spring Boot Users: Spring Boot 2.0.2 and 1.5.13, released earlier today, contain the fixes for the above vulnerabilities.
Get support
Tanzu Spring offers support and binaries for OpenJDK™, Spring, and Apache Tomcat® in one simple subscription.
Learn moreUpcoming events
Check out all the upcoming events in the Spring community.
View all