[mitreid-connect] Security release: 1.1.14
Justin Richer
jricher at mit.edu
Fri Feb 27 12:50:17 EST 2015
Version 1.1.14 of MITREid Connect has been released to address a security vulnerability in the underlying Spring framework, CVE-2014-3578. The binary release will be in Maven Central by the afternoon of Friday, February 27, 2015.
The 1.0 legacy branch cannot be updated to address this security vulnerability due to its dependency on an earlier version of the Spring framework.
The 1.2 development branch is not susceptible to this vulnerability.
— Justin Richer
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 455 bytes
Desc: Message signed with OpenPGP using GPGMail
Url : http://mailman.mit.edu/pipermail/mitreid-connect/attachments/20150227/c4bd9c1a/attachment.bin
More information about the mitreid-connect
mailing list