sunSUNQ

[GHSA-ffvq-7w96-97p7] Denial of Service in Spring Framework

4

**Updates** - References - Source code location **Comments** Add source code location and patch links related to CVE-2018-15756.

[GHSA-hhpm-5cp2-hg4x] Deserialization of Untrusted Data in Jenkins

4

**Updates** - Affected products - References - Source code location **Comments** Add some patch links related to CVE-2018-1000861.

[GHSA-p5hg-3xm3-gcjg] Spring Framework allows applications to expose STOMP over WebSocket endpoints

2

**Updates** - References - Source code location **Comments** Add source code location and patch links related to CVE-2018-1270.

[GHSA-3p86-xgrq-m6p6] Improper Neutralization of Input During Web Page Generation in Apache Tomcat

2

**Updates** - Affected products - References **Comments** Add four more patch links related to CVE-2011-0013.

[GHSA-r57f-7xw3-q2r9] Improper Authentication in Jenkins

2

**Updates** - References **Comments** Add some patch links related to CVE-2017-1000354.