Status: Released (View Workflow)
Affects Version/s: 1.9.13, 1.10.10, 1.12
Component/s: Job Scheduler Binaries
CVE-ID:CVE-2015-0201, CVE-2015-3192, CVE-2015-5211, CVE-2016-5007, CVE-2018-1257, CVE-2018-1270, CVE-2018-1272, CVE-2018-1275
- The JobScheduler currently uses the Spring Framework core in version 4.1.2 for JobScheduler integration tests.
- For the vulnerability issues affecting the JobScheduler integration tests, see:
- Due to vulnerability Issues of older Spring Framework core releases the JobScheduler should use the current version 4.3.10 that fixes the issues.
- The released versions of the JobScheduler are not affected by those vulnerabilities.
- The vulnerability issues affect only the internally used integration tests.