resolve spring, tomcat, netty CVE
Type of change
-
Bug Fix -
Feature
Please provide link to gitlab issue or ADR(Architecture Decision Record)
Does this introduce a change in the core logic?
- NO
Does this introduce a change in the cloud provider implementation, if so which cloud?
-
AWS -
Azure -
GCP -
IBM
Does this introduce a breaking change?
- NO
What is the current behavior?
CVEs
What is the new/expected behavior?
No CVEs from tomcat or spring security
Have you added/updated Unit Tests and Integration Tests?
No. Testing: Executed several queries against gcz well points endpoint using postman against my local service deployed with this image
Any other useful information
Resolve spring-security-web, netty and tomcat-embed-core CVEs
Edited by Timothy Lobl