Security Reports for Spring Framework, Spring Data REST, Spring AMQP, and Spring Cloud OpenFeign
The recently released Spring Boot 2.5.6 and 2.4.12 releases contain fixes for the following security vulnerabilities:
- CVE-2021-22096 for the Spring Framework
- CVE-2021-22047 for Spring Data REST
- CVE-2021-22097 for Spring AMQP
In addition, Spring Cloud OpenFeign has released versions 3.0.5 and 2.2.10, based on the same Spring Boot versions, and containing a fix for the following security vulnerability:
- CVE-2021-22044 for Spring Cloud OpenFeign
Please, review the reports and upgrade!