Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Update dependency org.springframework:spring-core to v5.2.22.RELEASE #118

Open
wants to merge 1 commit into
base: master
Choose a base branch
from
Open

Update dependency org.springframework:spring-core to v5.2.22.RELEASE #118

wants to merge 1 commit into from

Conversation

dev-mend-for-github-com[bot]
Copy link

This PR contains the following updates:

Package Type Update Change
org.springframework:spring-core compile patch 5.2.18.RELEASE -> 5.2.22.RELEASE

By merging this PR, the issue #81 will be automatically resolved and closed:

Severity CVSS Score CVE Reachability
Medium Medium 4.3 CVE-2021-22060
Medium Medium 4.3 CVE-2022-22970

Release Notes

spring-projects/spring-framework (org.springframework:spring-core)

v5.2.22.RELEASE

Compare Source

⭐ New Features

  • Refine CachedIntrospectionResults property introspection #​28446

🐞 Bug Fixes

v5.2.21.RELEASE

Compare Source

⭐ New Features

  • Remove DNS lookups during websocket connection initiation #​28281

🐞 Bug Fixes

  • Improve documentation and matching algorithm in data binders #​28334
  • CodeGenerationException thrown when using AnnotationMBeanExporter on JDK 17 #​28279
  • ResponseEntity objects are accumulated in ConcurrentReferenceHashMap #​28273
  • NotWritablePropertyException when attempting to declaratively configure ClassLoader properties #​28272

v5.2.20.RELEASE

Compare Source

⭐ New Features

  • Restrict access to property paths on Class references #​28262
  • Improve diagnostics in SpEL for large array creation #​28257

v5.2.19.RELEASE

Compare Source

⭐ New Features

  • Declare serialVersionUID on DefaultAopProxyFactory #​27785
  • Use ByteArrayDecoder in DefaultClientResponse::createException #​27667

🐞 Bug Fixes

  • ProxyFactoryBean getObject called before setInterceptorNames, silently creating an invalid proxy [SPR-7582] #​27817
  • Possible NPE in Spring MVC LogFormatUtils #​27783
  • UndertowHeadersAdapter's remove() method violates Map contract #​27593
  • Fix assertion failure messages in DefaultDataBuffer.checkIndex() #​27577

📔 Documentation

  • Lazy annotation throws exception if non-required bean does not exist #​27660
  • Incorrect Javadoc in [NamedParameter]JdbcOperations.queryForObject methods regarding exceptions #​27581
  • DefaultResponseErrorHandler update javadoc comment #​27571

🔨 Dependency Upgrades

  • If you want to rebase/retry this PR, check this box

@dev-mend-for-github-com dev-mend-for-github-com bot added the security fix Security fix generated by Mend label Jan 8, 2025
@dev-mend-for-github-com dev-mend-for-github-com bot changed the title Update dependency org.springframework:spring-core to v5.2.22.RELEASE Update dependency org.springframework:spring-core to v5.2.22.RELEASE - autoclosed Jan 9, 2025
@dev-mend-for-github-com dev-mend-for-github-com bot deleted the whitesource-remediate/org.springframework-spring-core-5.x branch January 9, 2025 13:14
@dev-mend-for-github-com dev-mend-for-github-com bot changed the title Update dependency org.springframework:spring-core to v5.2.22.RELEASE - autoclosed Update dependency org.springframework:spring-core to v5.2.22.RELEASE Jan 9, 2025
@dev-mend-for-github-com dev-mend-for-github-com bot force-pushed the whitesource-remediate/org.springframework-spring-core-5.x branch from 3491816 to e2f12dd Compare January 9, 2025 15:05
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
security fix Security fix generated by Mend
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
0 participants