Description
Spring Framework version 5.0.5 when used in combination with any versions
of Spring Security contains an authorization bypass when using method
security. An unauthorized malicious user can gain unauthorized access to
methods that should be restricted.
Package
Upstream: | needs-triage
|
Ubuntu 18.04 LTS: | DNE
|
Ubuntu 14.04 ESM: | DNE
(trusty was needs-triage)
|
Patches:
Updated: 2022-04-13 13:17:32 UTC (commit f411bd370d482ef4385c4e751d121a4055fbc009)