Uploaded image for project: 'Bitbucket Data Center'
  1. Bitbucket Data Center
  2. BSERV-13376

Update Spring Security for CVE-2022-22978

XMLWordPrintable

    • We collect Bitbucket feedback from various sources, and we evaluate what we've collected when planning our product roadmap. To understand how this piece of feedback will be reviewed, see our Implementation of New Features Policy.

      Update Spring Security for CVE-2022-22978
      https://spring.io/blog/2022/05/15/spring-security-5-7-0-5-6-4-5-5-7-released-fixes-cve-2022-22978-cve-2022-22976
      At the time of writing, no actual vulnerability is known for Bitbucket, however customers have reported their scanning tools report the pre-fixed versions of Spring Security so at a minimum it should be updated to alleviate that concern.

            Unassigned Unassigned
            behumphreys Ben Humphreys
            Votes:
            0 Vote for this issue
            Watchers:
            4 Start watching this issue

              Created:
              Updated:
              Resolved: