Spring Boot3.4.17

Takes an opinionated view of building Spring applications and gets you up and running as quickly as possible.

Version(s)
Support

Reference Doc-API Doc

Changelog

🐞 Bug Fixes

Some case-insensitive comparisons incorrectly use 'Locale.getDefault()'
CVE-2026-41001: Predictable Temp Directory in Spring Boot Artemis Embedded Configuration Enables Local Privilege Escalation
CVE-2026-40992: Mail Auto-Configuration Does Not Enable SSL Hostname Verification

🔨 Dependency Upgrades

Upgrade to Glassfish JAXB 4.0.8
Upgrade to Groovy 4.0.32
Upgrade to Hibernate 6.6.50.Final
Upgrade to Jackson Bom 2.18.7
Upgrade to Jakarta XML Bind 4.0.5
Upgrade to Jaxen 2.0.2
Upgrade to Jetty 12.0.35
Upgrade to jOOQ 3.19.34
Upgrade to Micrometer 1.14.16
Upgrade to Micrometer Tracing 1.4.15
Upgrade to Netty 4.1.133.Final
Upgrade to Postgresql 42.7.11
Upgrade to Reactor Bom 2024.0.17.1
Upgrade to SAAJ Impl 3.0.5
Upgrade to SLF4J 2.0.18
Upgrade to Spring AMQP 3.2.10.1
Upgrade to Spring Authorization Server 1.4.11
Upgrade to Spring Data Bom 2024.1.15
Upgrade to Spring Framework 6.2.18.1
Upgrade to Spring GraphQL 1.3.9
Upgrade to Spring HATEOAS 2.4.2
Upgrade to Spring Integration 6.4.12
Upgrade to Spring Kafka 3.3.15.1
Upgrade to Spring LDAP 3.2.18
Upgrade to Spring Pulsar 1.2.17.1
Upgrade to Spring REST Docs 3.0.5.1
Upgrade to Spring Retry 2.0.12.1
Upgrade to Spring Security 6.4.17
Upgrade to Spring Session 3.4.9
Upgrade to Spring WS 4.0.19
Upgrade to Tomcat 10.1.55

Get Started with Tanzu Spring today

Apache®, Apache Tomcat®, Apache Kafka, Apache Geode and Kubernetes are either registered trademarks or trademarks of the Apache Software Foundation in the United States and/or other countries. Java and OpenJDK are trademarks or registered trademarks of Oracle and/or its affiliates. Linux® is the registered trademark of Linus Torvalds in the U.S. and other countries. Windows® is a registered trademark of the Microsoft Corporation. Other names may be trademarks of their respective owners.