Spring Vulnerability reported on latest Spring Framework 5.3.24

Affects: 5.2.34

Can you please let us know a possible ETA for the vulnerability reported on the latest spring-xx-5.3.24 https://mvnrepository.com/artifact/org.springframework/spring-web/5.3.24 Vulnerability reported https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1000027

We cannot upgrade to spring 6.x because of JDK constraints.

Comment From: bclozel

Duplicate of #24434