You are here
Home > Preporuke > Sigurnosni nedostatak programskog paketa springframework

Sigurnosni nedostatak programskog paketa springframework

  • Detalji os-a: WN7
  • Važnost: IMP
  • Operativni sustavi: L
  • Kategorije: LFE

Fedora Update Notification
2017-01-12 01:46:20.762240

Name : springframework-security
Product : Fedora 25
Version : 3.2.10
Release : 1.fc25
Summary : Modular Java/J2EE application security framework
Description :
Spring Security is a Java/Java EE framework that provides advanced
authentication, authorization and other comprehensive security features for
enterprise applications. In addition to having a comprehensive list of
security functionality, Spring Security is very configurable and employs the
Spring Framework for configuration, it allows for reuse and portability of
security components, and it can also be used with non-Spring applications.

Update Information:

update to 3.2.10.RELEASE, fix CVE-2016-9879

[ 1 ] Bug #1409838 – CVE-2016-9879 Spring Security: Improper handling of path parameters allows bypassing the security constraint

This update can be installed with the “dnf” update program. Use
su -c ‘dnf upgrade springframework-security’ at the command line.
For more information, refer to the dnf documentation available at

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
package-announce mailing list —
To unsubscribe send an email to

AutorMarko Stanec
Cert idNCERT-REF-2017-01-0029-ADV
More in Preporuke
Sigurnosni nedostaci programskog paketa bind

Otkriveni su sigurnosni nedostaci u programskom paketu bind za operacijski sustav SUSE Linux Enterprise. Otkriveni nedostaci potencijalnim napadačima omogućuju izvođenje...