spring-security Upgrade nimbus-jose-jwt:jar to 9.37.3 in Spring Security 5.8.x

Upgrade nimbus-jose-jwt:jar to 9.37.3 in Spring Security 5.8.x

Open blackat opened this issue 4 months ago • 1 comments

Hello, would it be possible please to upgrade Nimbus dependency in Spring Security 5.8.x? The library is vulnerable to https://nvd.nist.gov/vuln/detail/CVE-2023-52428.

Oct 18 '24 09:10 blackat

spring-security spring-security copied to clipboard

Upgrade nimbus-jose-jwt:jar to 9.37.3 in Spring Security 5.8.x

spring-security
spring-security copied to clipboard