Guava 24.1.1 is released, this update fixes a DOS vulnerability for servers using Guava and deserializing attacker data: CVE-2018-10237.
Maven
<dependency> <groupId>com.google.guava</groupId> <artifactId>guava</artifactId> <version>24.1.1-jre</version> <!-- or, for Android: --> <version>24.1.1-android</version> </dependency>
Javadoc
JDiff
Guava is an open source project of Google, which contains many Google core Java libraries, such as: collection [collections], cache [caching], native type support [primitives support], concurrency library [concurrency libraries], common annotations [common annotations] , string processing [string processing], I/O, etc.
download link: