Spring Boot 2.2.5 release, available from repo.spring.io access and Maven Central.
This release includes 62 bug fixes, enhancements, improved documentation and dependencies upgrade .
It is noteworthy that, this version includes Reactor Netty dependence 0.9.5 update for CVE-2020-5403 and CVE-2020-5404 has been fixed. This vulnerability Reactor Netty HttpServer 0.9.3 and 0.9.4 in a URISyntaxException to exist, the exception causes premature shut off without generating the connection response 400, so that a malicious user can DoS by malformed URL.
Details View Update:
https://spring.io/blog/2020/02/27/spring-boot-2-2-5-released