vaadin/platform 24.0.13

Vaadin 24.0.13

on GitHub

This is a maintenance release for Vaadin 24.0. See 24.0.0 release notes for details and resources.

Changelogs

• Flow (24.0.14) and Hilla (2.0.13)
• Design System
  • Web Components (24.0.13)
  • Flow Components (24.0.13)
• Designer (Release notes)
• Design System Publisher (Documentation)
• TestBench (9.0.7)
• Classic Components(24.0.0)
• Multiplatform Runtime (MPR) (7.0.7)
• Router (1.7.5)
• Vaadin Kits
  • Azure Kit (1.0.0)
  • Collaboration Kit (6.0.0)
  • Kubernetes Kit (2.0.0)
  • Observability Kit (2.0.0)
  • SSO Kit (2.0.5)
  • Swing Kit (2.0.0)
• Designer (Release notes)

Official add-ons and plugins:

• Spring add-on (24.0.14)
• CDI add-on (15.0.1)
• Maven plugin (24.0.13)
• Gradle plugin (24.0.13)
• Quarkus plugin (2.0.1)

known vulnerability

TestBench brings the dependency pkg:maven/com.google.guava/guava@31.1-jre, that has the vulnerability described in CVE-2020-8908 and CVE-2023-2976, the problematic method has been deprecated in guava and it is not used in Vaadin.