포럼: Open Discussion (Thread #45608)

Spring Frameworkの脆弱性について (2022-04-05 16:57 by TBFW利用者 #89302)

https://internet.watch.impress.co.jp/docs/news/1399929.html
Spring Frameworkに脆弱性ありと診断されましたが、terasoluna-batch4j-all_3.3.1.zipでは当脆弱性は問題ないでしょうか。

Reply to #89302×

You can not use Wiki syntax
You are not logged in. To discriminate your posts from the rest, you need to pick a nickname. (The uniqueness of nickname is not reserved. It is possible that someone else could use the exactly same nickname. If you want assurance of your identity, you are recommended to login before posting.) Login

Re: Spring Frameworkの脆弱性について (2022-04-07 10:39 by terasoluna #89317)

メッセージ #89302 への返信
> https://internet.watch.impress.co.jp/docs/news/1399929.html
> Spring Frameworkに脆弱性ありと診断されましたが、terasoluna-batch4j-all_3.3.1.zipでは当脆弱性は問題ないでしょうか。

TERASOLUNA Batch Framework for Java 3.3.1は、
機能説明書に記載の方法でのご利用が前提となりますが、下記脆弱性の影響は受けません。
・[CVE-2022-22965]Spring Frameworkのリモートコード実行(RCE)の脆弱性(Spring4Shell)
Reply to #89302

Reply to #89317×

You can not use Wiki syntax
You are not logged in. To discriminate your posts from the rest, you need to pick a nickname. (The uniqueness of nickname is not reserved. It is possible that someone else could use the exactly same nickname. If you want assurance of your identity, you are recommended to login before posting.) Login

Re: Spring Frameworkの脆弱性について (2022-04-11 20:55 by TBFW利用者 #89387)

ご回答ありがとうございます。
Reply to #89317

Reply to #89387×

You can not use Wiki syntax
You are not logged in. To discriminate your posts from the rest, you need to pick a nickname. (The uniqueness of nickname is not reserved. It is possible that someone else could use the exactly same nickname. If you want assurance of your identity, you are recommended to login before posting.) Login