Update due to security issue

Access Restriction Bypass
Vulnerable module: org.springframework:spring-core
Introduced through: org.springframework:[email protected] and org.springframework:[email protected]
Detailed paths
Introduced through: javydreamercsw/pcgen@javydreamercsw/pcgen#29244ff1b5da381d0ac851a0b682d79c6f5392df › org.springframework:[email protected] › org.springframework:[email protected] 
Remediation: Upgrade to org.springframework:[email protected].
Introduced through: javydreamercsw/pcgen@javydreamercsw/pcgen#29244ff1b5da381d0ac851a0b682d79c6f5392df › org.springframework:[email protected] 
Remediation: Upgrade to org.springframework:[email protected].
Overview
org.springframework:spring-core provides a comprehensive programming and configuration model for modern Java-based enterprise applications - on any kind of deployment platform.

Affected versions of this package are vulnerable to Access Restriction Bypass. It does not consider URL path parameters when processing security constraints. By adding a URL path parameter with special encodings, an attacker may be able to bypass a security constraint.

See here for details: https://snyk.io/vuln/SNYK-JAVA-ORGSPRINGFRAMEWORK-31650

build.gradle

@@ -157,8 +157,8 @@ compileJava {
 dependencies {
     compile group: 'cobra', name: 'cobra', version:'0.98.4-pcgen'
     compile group: 'commons-io', name: 'commons-io', version:'2.6'
-    compile group: 'org.springframework', name: 'spring-core', version:'5.0.2.RELEASE'
-    compile group: 'org.springframework', name: 'spring-beans', version:'5.0.2.RELEASE'
+    compile group: 'org.springframework', name: 'spring-core', version:'5.0.3.RELEASE'
+    compile group: 'org.springframework', name: 'spring-beans', version:'5.0.3.RELEASE'
     compile group: 'skinlf', name: 'skinlf', version: '1.2.3'
     compile group: 'org.apache.commons', name: 'commons-lang3', version:'3.7'
     compile group: 'org.apache.xmlgraphics', name: 'fop', version:'2.2'