Bugfixes

Incident number
Summary (problem description)
Resolution
PUB-400CVE-2023-34042 has been detected for spring-security 5.7.10. Fixed by updating spring-security to version 5.7.11

Upgrade Instructions

There are no specific upgrade instructions but when you upgrade from version 4.x, please take a look at the Platform support and Installing Publisher 5 due to the upgrade to Java 11.

3rd Party Libraries

There is also a page available which lists all the 3rd party libraries that are used in the Publisher. See for more information: Blueriq Publisher 5 libraries.

ArtifactId

GroupId

License

Version in 1

Version in 2

spring-security-acl

org.springframework.security

Apache License 2.0

5.7.10

5.7.11

spring-security-config

org.springframework.security

Apache License 2.0

5.7.10

5.7.11

spring-security-core

org.springframework.security

Apache License 2.0

5.7.10

5.7.11

spring-security-crypto

org.springframework.security

Apache License 2.0

5.7.10

5.7.11

spring-security-taglibs

org.springframework.security

Apache License 2.0

5.7.10

5.7.11

spring-security-web

org.springframework.security

Apache License 2.0

5.7.10

5.7.11