github vaadin/platform 24.0.11
Vaadin 24.0.11

latest releases: 24.5.3, 14.12.3, 24.5.2...
15 months ago

This is a maintenance release for Vaadin 24.0. See 24.0.0 release notes for details and resources.

Note

To fix cve-2023-34035, Spring Security 6.0.5 has been introduced a breaking change. Vaadin 24.0.11 is compatible with the latest Springboot containing the breaking change.

Changelogs

Official add-ons and plugins:

  • Spring add-on (24.0.12)
  • CDI add-on (15.0.1)
  • Maven plugin (24.0.11)
  • Gradle plugin (24.0.11)
  • Quarkus plugin (2.0.1)

known vulnerability

TestBench brings the dependency pkg:maven/com.google.guava/guava@31.1-jre, that has the vulnerability described in CVE-2020-8908 and CVE-2023-2976, the problematic method has been deprecated in guava and it is not used in Vaadin.

Don't miss a new platform release

NewReleases is sending notifications on new releases.