討論區: 公開討論 (Thread #45608)

Spring Frameworkの脆弱性について (2022-04-05 16:57 by TBFW利用者 #89302)

https://internet.watch.impress.co.jp/docs/news/1399929.html
Spring Frameworkに脆弱性ありと診断されましたが、terasoluna-batch4j-all_3.3.1.zipでは当脆弱性は問題ないでしょうか。

回覆 #89302×

You can not use Wiki syntax
You are not logged in. To discriminate your posts from the rest, you need to pick a nickname. (The uniqueness of nickname is not reserved. It is possible that someone else could use the exactly same nickname. If you want assurance of your identity, you are recommended to login before posting.) 登入

Re: Spring Frameworkの脆弱性について (2022-04-07 10:39 by terasoluna #89317)

メッセージ #89302 への返信
> https://internet.watch.impress.co.jp/docs/news/1399929.html
> Spring Frameworkに脆弱性ありと診断されましたが、terasoluna-batch4j-all_3.3.1.zipでは当脆弱性は問題ないでしょうか。

TERASOLUNA Batch Framework for Java 3.3.1は、
機能説明書に記載の方法でのご利用が前提となりますが、下記脆弱性の影響は受けません。
・[CVE-2022-22965]Spring Frameworkのリモートコード実行(RCE)の脆弱性(Spring4Shell)
回覆: #89302

回覆 #89317×

You can not use Wiki syntax
You are not logged in. To discriminate your posts from the rest, you need to pick a nickname. (The uniqueness of nickname is not reserved. It is possible that someone else could use the exactly same nickname. If you want assurance of your identity, you are recommended to login before posting.) 登入

Re: Spring Frameworkの脆弱性について (2022-04-11 20:55 by TBFW利用者 #89387)

ご回答ありがとうございます。
回覆: #89317

回覆 #89387×

You can not use Wiki syntax
You are not logged in. To discriminate your posts from the rest, you need to pick a nickname. (The uniqueness of nickname is not reserved. It is possible that someone else could use the exactly same nickname. If you want assurance of your identity, you are recommended to login before posting.) 登入