Spring Security 6.1.0-RC1, 6.0.3, 5.8.3 and 5.7.8 released, fix CVE-2023-20862
On behalf of the team and everyone who has contributed, I am pleased to announce that the Spring Security 6.1.0-RC1
, 6.0.3
, 5.8.3
and 5.7.8
versions are available now.
Please refer to the releases page for more detail on what is included in each release.
Those versions fix the following CVE:
The 6.0.3
and 5.7.8
versions will be shipped with Spring Boot 3.0.6
and 2.7.11
, to be released next Thursday. In the meantime, you can update your existing Spring Boot application to pick up the latest Spring Security version.
For Gradle builds in build.gradle
…