Spring Cloud Data Flow 2.11.3 Released

Releases | Corneil du Plessis | May 22, 2024 | ...

On behalf of the team and everyone who has contributed, I’m happy to announce that Spring Cloud Data Flow 2.11.3 has been released and is now available from Maven Central.

Notable Changes in 2.11.3

  • Updated versions and mitigations for CVEs.

    • CVE-2024-22263 Skipper upload validation vulnerability mitigated.
    • Nimbus 9.37.2
    • BouncyCastle 1.78.1
    • Spring Kafka 2.9.13
    • Embedded Tomcat 9.0.88
    • Netty family
      • Netty to 4.1.109.Final
      • Reactor BOM to 2020.0.43
      • Rsocket BOM to 1.1.4
  • Added tasks/thinexecutions used to list Task Executions more efficiently.

Library Updates

  • Spring Framework 5.3.34
  • Spring Security 5.7.12

See the release notes for more information.

Stay in touch...

As always, we welcome feedback and contributions, so please reach out to us on Stackoverflow or GitHub.

Get the Spring newsletter

Stay connected with the Spring newsletter

Subscribe

Get ahead

VMware offers training and certification to turbo-charge your progress.

Learn more

Get support

Tanzu Spring offers support and binaries for OpenJDK™, Spring, and Apache Tomcat® in one simple subscription.

Learn more

Upcoming events

Check out all the upcoming events in the Spring community.

View all