Spring Framework 5.x — End of Life
EOLSpring Framework 5.x — All releases
| Version | Released | Active support | EOL date | Latest patch | Status |
|---|---|---|---|---|---|
| 5.3LTS | Oct 31, 2020 | — | Aug 31, 2024 | 5.3.39 | EOL |
| 5.2 | Sep 30, 2019 | — | Dec 31, 2021 | 5.2.25 | EOL |
| 5.1 | Sep 21, 2018 | — | Dec 31, 2020 | 5.1.20 | EOL |
| 5.0 | Sep 28, 2017 | — | Dec 31, 2020 | 5.0.20 | EOL |
CVEs affecting Spring Framework 5.x (0)
Spring Framework 5.x is EOL — migrate to Spring Framework 6.x
Spring Framework 6.x is the next major release. Plan your upgrade before Spring Framework 5.x stops receiving security patches.
Frequently asked questions
Is Spring Framework 5 end of life?
Yes. All Spring Framework 5.x releases have reached end of life and no longer receive security patches. Migrate to Spring Framework 6.x as soon as possible.
What CVEs affect Spring Framework 5?
No CVEs are currently tracked for Spring Framework 5.x in our database. This may mean no vulnerabilities have been recorded yet, or the data is still syncing.
What is the latest Spring Framework 5 version?
The latest Spring Framework 5.x patch release is 5.3.39, released on August 14, 2024. Always run the latest patch to benefit from all security fixes.
How to migrate from Spring Framework 5 to Spring Framework 6?
To migrate from Spring Framework 5 to Spring Framework 6: (1) review the official Spring Framework 6 migration guide for breaking changes, (2) update dependencies and configuration accordingly, (3) test thoroughly in a staging environment, (4) deploy with a rollback plan. Starting early gives you time to resolve compatibility issues before your current version reaches end of life.
Is it safe to run Spring Framework 5 in production?
No. Spring Framework 5 has reached end of life and security vulnerabilities are no longer patched. Upgrade to a supported version immediately.
Data sourced from endoflife.date · CVE data from NVD · EPSS from FIRST.org · KEV from CISA