www-announce mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Colm O hEigeartaigh <cohei...@apache.org>
Subject Apache CXF 3.2.5 and 3.1.16 are released
Date Wed, 04 Jul 2018 08:02:43 GMT
Apache CXF™ (http://cxf.apache.org/) is an open source services framework.
CXF helps you build and develop services using frontend programming APIs,
like JAX-WS and JAX-RS. These services can speak a variety of protocols
such as SOAP, XML/HTTP, RESTful HTTP, or CORBA and work over a variety of
transports such as HTTP, JMS or JBI.

The Apache CXF team is proud to announce the release of versions 3.2.5 and
3.1.16. Over 50 JIRA issues were fixed for 3.2.5 and 25 JIRA items were
resolved for 3.1.16.

The releases can be downloaded here: http://cxf.apache.org/download.html

In addition, both of these releases contain a fix for a new security
advisory:

CVE-2018-8039: Apache CXF TLS hostname verification does not work correctly
with com.sun.net.ssl.

The advisory text is available at this location:
http://cxf.apache.org/security-advisories.data/CVE-2018-
8039.txt.asc?version=1&modificationDate=1530184663000&api=v2

Please also refer to the CXF security advisories page:
http://cxf.apache.org/security-advisories.html



-- 
Colm O hEigeartaigh

Talend Community Coder
http://coders.talend.com

Mime
View raw message