The latest articles on DEV Community by OriolJT (@orioljt). https://dev.to/orioljt https://media2.dev.to/dynamic/image/width=90,height=90,fit=cover,gravity=auto,format=auto/https:%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Fuser%2Fprofile_image%2F995220%2Faa30afa1-9b99-46d5-8a5c-ba611b5a6160.png https://dev.to/orioljt en OriolJT Fri, 23 Dec 2022 11:44:19 +0000 https://dev.to/orioljt/spring-framework-600-compatibility-with-java-11-mil https://dev.to/orioljt/spring-framework-600-compatibility-with-java-11-mil <p>Hello guys,<br> In my company we are using Spring and Spring Boot with Java 11, and for now we do not have an option to update to Java 17 for external reasons.</p> <p>Lately a CRITICAL vulnerability with all the versions under Spring-Web:6.0.0 appeared. We wanted to update to the 6.0.0 version but it is only compatible with Java 17, something that as I already said, for now we cannot do.</p> <p>I would like to know if there is anything that we can do to avoid that vulnerability. I thought that maybe the Spring team will decide to release a version 5.x.x (that is compatible with Java 11) with that vulnerability fixed or maybe I can change some internal stuff of the Spring library and maybe I could solve the problem for now.</p> <p>Do you guys have any idea of how can we solve this issue? I really appreciate any help.</p> security vulnerability api spring