{"id":269774,"date":"2023-05-03T09:00:23","date_gmt":"2023-05-03T01:00:23","guid":{"rendered":"https:\/\/lrxjmw.cn\/?p=269774"},"modified":"2023-04-30T14:27:02","modified_gmt":"2023-04-30T06:27:02","slug":"spring-security-6","status":"publish","type":"post","link":"https:\/\/lrxjmw.cn\/spring-security-6.html","title":{"rendered":"Spring Security 6.1.0-RC1, 6.0.3, 5.8.3\u548c5.7.8\u5df2\u53d1\u5e03"},"content":{"rendered":"\n\n\n
\u5bfc\u8bfb<\/td>\nSpring Security 6.1.0-RC1\u30016.0.3\u30015.8.3\u548c5.7.8\u7248\u672c\u73b0\u5df2\u53d1\u5e03\uff0c\u4fee\u590dCVE-2023-20862\u3002<\/strong><\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n

\"\"<\/p>\n

\u5173\u4e8e\u6bcf\u4e2a\u7248\u672c\u6240\u5305\u542b\u7684\u5185\u5bb9\uff0c\u8bf7\u53c2\u8003\u53d1\u5e03\u9875\u9762\u3002<\/p>\n

\u8fd9\u4e9b\u7248\u672c\u4fee\u590d\u4e86\u4ee5\u4e0bCVE\uff1a<\/p>\n

CVE-2023-20862\uff1a\u7a7a\u7684SecurityContext\u5728\u6ce8\u9500\u65f6\u672a\u88ab\u6b63\u786e\u4fdd\u5b58
\n6.0.3\u548c5.7.8\u7248\u672c\u5c06\u4e0e\u4e0b\u5468\u56db\u53d1\u5e03\u7684Spring Boot 3.0.6\u548c2.7.11\u4e00\u8d77\u53d1\u8d27\u3002\u5728\u6b64\u671f\u95f4\uff0c\u4f60\u53ef\u4ee5\u66f4\u65b0\u4f60\u73b0\u6709\u7684Spring Boot\u5e94\u7528\u7a0b\u5e8f\uff0c\u4ee5\u83b7\u5f97\u6700\u65b0\u7684Spring Security\u7248\u672c\u3002<\/p>\n

For Gradle builds in build.gradle:<\/p>\n

ext['spring-security.version'] = '6.0.3'<\/pre>\n
Or for Maven builds in pom.xml:<\/p>\n
<<\/span>properties<\/span><\/span>><\/span>\r\n  <\/span><<\/span>spring-security.version<\/span><\/span>><\/span><\/span>6.0.3<\/span><\/<\/span>spring-security.version<\/span><\/span>><\/span><\/span>\r\n<\/span><\/<\/span>properties<\/span><\/span>><\/span><\/span><\/pre>\n
\u540c\u6837\u91cd\u8981\u7684\u662f\u8981\u8bb0\u4f4f\uff0c5.8\u7248\u672c\u7684Spring Security\u662f\u4e00\u4e2a\u7279\u6b8a\u7684\u7248\u672c\uff0c\u65e8\u5728\u5e2e\u52a9\u4f60\u8fc1\u79fb\u5230Spring Security 6.0\uff0c\u56e0\u6b64\uff0c\u5982\u679c\u4f60\u6253\u7b97\u5347\u7ea7\u4f60\u7684\u5e94\u7528\u7a0b\u5e8f\uff0c\u4f7f\u7528\u8be5\u7248\u672c\u7ed3\u5408\u7279\u6b8a\u7684\u8fc1\u79fb\u6307\u5357\u4f1a\u4f7f\u8fc1\u79fb\u66f4\u52a0\u987a\u5229\u3002<\/p>\n","protected":false},"excerpt":{"rendered":"
\u5173\u4e8e\u6bcf\u4e2a\u7248\u672c\u6240\u5305\u542b\u7684\u5185\u5bb9\uff0c\u8bf7\u53c2\u8003\u53d1\u5e03\u9875\u9762\u3002 \u8fd9\u4e9b\u7248\u672c\u4fee\u590d\u4e86\u4ee5\u4e0bCVE\uff1a CVE-2023-20862\uff1a\u7a7a\u7684Se […]<\/p>\n","protected":false},"author":1481,"featured_media":269781,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"footnotes":""},"categories":[21],"tags":[],"class_list":["post-269774","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-news"],"acf":[],"_links":{"self":[{"href":"https:\/\/lrxjmw.cn\/wp-json\/wp\/v2\/posts\/269774","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/lrxjmw.cn\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/lrxjmw.cn\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/lrxjmw.cn\/wp-json\/wp\/v2\/users\/1481"}],"replies":[{"embeddable":true,"href":"https:\/\/lrxjmw.cn\/wp-json\/wp\/v2\/comments?post=269774"}],"version-history":[{"count":12,"href":"https:\/\/lrxjmw.cn\/wp-json\/wp\/v2\/posts\/269774\/revisions"}],"predecessor-version":[{"id":270380,"href":"https:\/\/lrxjmw.cn\/wp-json\/wp\/v2\/posts\/269774\/revisions\/270380"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/lrxjmw.cn\/wp-json\/wp\/v2\/media\/269781"}],"wp:attachment":[{"href":"https:\/\/lrxjmw.cn\/wp-json\/wp\/v2\/media?parent=269774"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/lrxjmw.cn\/wp-json\/wp\/v2\/categories?post=269774"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/lrxjmw.cn\/wp-json\/wp\/v2\/tags?post=269774"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}