Releases: folio-org/spring-module-core
Releases · folio-org/spring-module-core
v2.0.0
- FOLIO-3912: Java 17, Spring Boot 3, Hibernate 6
- FOLIO-3915: spring-boot-starter-web 3.1.5 fixing tomcat DoS
v1.1.5
- FOLIO-3744 Spring Boot 2.7.10
v1.1.4
Bug fixes:
- FOLIO-3724 Spring Boot 2.7.9, PostgreSQL 42.5.4
Upgrading Spring Boot from 2.7.5 to 2.7.9 indirectly upgrades tomcat-embed-core from 9.0.68 to 9.0.71 fixing Denial of Service (DoS) and Improper Input Validation:
https://nvd.nist.gov/vuln/detail/CVE-2023-24998
https://nvd.nist.gov/vuln/detail/CVE-2022-45143
Upgrading the JDBC PostgreSQL client from 42.5.1 to 42.5.4 makes sure socket is closed if an exception is thrown in createSocket:
https://jdbc.postgresql.org/changelogs/2023-01-31-42.5.2-release/
v1.1.3
- Bump postgresql from 42.5.0 to 42.5.1 (#40)
- Schema name SQL injection (FOLIO-3645) (#38)
v1.1.2
https://issues.folio.org/browse/FOLIO-3642
Fixing vulnerabilities:
- FOLIO-3637 spring-module-core postgresql 42.5.0
- FOLIO-3639 spring-module-core Spring Boot 2.7.5, Jackson 2.14.0, snakeyaml 1.33
Deploy configuration:
- FOLIO-3643: Deploy javadoc and sources
1.1.1 Release
1.1.0 Release
Merge pull request #28 from folio-org/log4j-upgrade upgrade log4j
1.0.0 Release
v1.0.0 remove commented out code