Back to bug 2187742
| Who | When | What | Removed | Added |
|---|---|---|---|---|
| Paige Jung | 2023-04-18 15:21:29 UTC | Doc Text | Certain versions of Spring Framework's Expression Language were found to not restrict the size of Spring Expressions. An attacker could use this to craft a malicious Spring Expression to cause a denial of service on the server. | A flaw was found in Spring Framework. Certain versions of Spring Framework's Expression Language were not restricting the size of Spring Expressions. This could allow an attacker to craft a malicious Spring Expression to cause a denial of service on the server. |
| errata-xmlrpc | 2023-05-03 14:05:30 UTC | Link ID | Red Hat Product Errata RHSA-2023:2099 | |
| errata-xmlrpc | 2023-05-03 14:07:21 UTC | Link ID | Red Hat Product Errata RHSA-2023:2100 | |
| Product Security DevOps Team | 2023-05-03 20:35:33 UTC | Status | NEW | CLOSED |
| Resolution | --- | ERRATA | ||
| Last Closed | 2023-05-03 20:35:33 UTC | |||
| Chess Hazlett | 2023-06-29 19:04:23 UTC | Severity | high | medium |
| Priority | high | medium | ||
| Chess Hazlett | 2023-06-29 19:09:04 UTC | CC | chazlett, jpavlik, pdelbell |
Back to bug 2187742