Fedora 25: springframework Security Update
Summary
Spring is a layered Java/J2EE application framework, based on code published in
Expert One-on-One J2EE Design and Development by Rod Johnson (Wrox, 2002).
Update Information:
Update to 3.2.18.RELEASE. Resolves: CVE-2016-9878 (rhbz#1408164,1408165)
Change Log
References
[ 1 ] Bug #1408164 - CVE-2016-9878 Spring Framework: Directory Traversal in the Spring Framework ResourceServlet https://bugzilla.redhat.com/show_bug.cgi?id=1408164
Update Instructions
This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade springframework' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html