You are viewing a plain text version of this content. The canonical link for it is here.

---

- [ANNOUNCE] Apache NiFi 1.17.0 release - posted by Joe Witt <jo...@apache.org> on 2022/08/01 20:24:32 UTC, 0 replies.
- [ANNOUNCE] Apache Kafka 3.2.1 - posted by David Arthur <da...@apache.org> on 2022/08/01 23:45:33 UTC, 0 replies.
- Apache Linkis (Incubating) 1.1.3 available - posted by Sherlock Homles <co...@apache.org> on 2022/08/02 13:27:38 UTC, 0 replies.
- [ANNOUNCE] Release Apache Kvrocks(incubating) 2.1.0 - posted by hulk <hu...@apache.org> on 2022/08/03 15:50:34 UTC, 0 replies.
- [ANNOUNCE] Apache JSPWiki 2.11.3 released - posted by Juan Pablo Santos Rodríguez <ju...@apache.org> on 2022/08/03 17:11:50 UTC, 0 replies.
- CVE-2022-27166: Apache JSPWiki: XSS vulnerability on XHRHtml2Markup.jsp in JSPWiki 2.11.2 - posted by Juan Pablo Santos Rodríguez <ju...@apache.org> on 2022/08/03 20:45:35 UTC, 0 replies.
- CVE-2022-28730: Apache JSPWiki Cross-site scripting vulnerability on AJAXPreview.jsp - posted by Juan Pablo Santos Rodríguez <ju...@apache.org> on 2022/08/03 20:45:51 UTC, 0 replies.
- CVE-2022-28731: Apache JSPWiki CSRF in UserPreferences.jsp - posted by Juan Pablo Santos Rodríguez <ju...@apache.org> on 2022/08/03 20:46:05 UTC, 0 replies.
- CVE-2022-28732: Apache JSPWiki Cross-site scripting vulnerability on WeblogPlugin - posted by Juan Pablo Santos Rodríguez <ju...@apache.org> on 2022/08/03 20:46:18 UTC, 0 replies.
- CVE-2022-34158: Apache JSPWiki: User Group Privilege Escalation - posted by Juan Pablo Santos Rodríguez <ju...@apache.org> on 2022/08/03 20:46:24 UTC, 0 replies.
- CVE-2022-25168: Apache Hadoop: Command injection in org.apache.hadoop.fs.FileUtil.unTarUsingTar - posted by Masatake Iwasaki <iw...@apache.org> on 2022/08/04 10:29:54 UTC, 0 replies.
- [ANNOUNCE] Apache Arrow 8.0.0 released - posted by Krisztián Szűcs <ks...@apache.org> on 2022/08/05 08:37:14 UTC, 0 replies.
- [ANNOUNCE] Apache Arrow 9.0.0 released - posted by Krisztián Szűcs <ks...@apache.org> on 2022/08/05 08:47:55 UTC, 0 replies.
- The Apache Weekly News Round-up: week ending 5 August 2022 - posted by Swapnil M Mane <sw...@apache.org> on 2022/08/05 20:28:40 UTC, 0 replies.
- [ANNOUNCE] Apache Bigtop 3.1.1 released - posted by Kengo Seki <se...@apache.org> on 2022/08/07 07:22:26 UTC, 0 replies.
- [ANN] Apache Syncope 2.1.12 - posted by Francesco Chicchiriccò <il...@apache.org> on 2022/08/08 14:22:34 UTC, 0 replies.
- [ANN] Apache Syncope 3.0.0-M0 - posted by Francesco Chicchiriccò <il...@apache.org> on 2022/08/08 14:23:34 UTC, 0 replies.
- [ANNOUNCE] Apache Avro 1.11.1 released - posted by Ryan Skraba <rs...@apache.org> on 2022/08/08 19:22:45 UTC, 0 replies.
- CVE-2022-35724: Apache Avro: Denial of service while reading data in Avro Rust SDK - posted by Ryan Skraba <rs...@apache.org> on 2022/08/08 19:33:29 UTC, 0 replies.
- CVE-2022-36124: Apache Avro: Memory overconsumption in Avro Rust SDK - posted by Ryan Skraba <rs...@apache.org> on 2022/08/08 19:33:37 UTC, 0 replies.
- CVE-2022-36125: Apache Avro: Integer overflow when reading corrupted .avro file in Avro Rust SDK - posted by Ryan Skraba <rs...@apache.org> on 2022/08/08 19:33:41 UTC, 0 replies.
- [ANNOUNCE] Apache UIMA Java SDK JSON CAS I/O v0.4.0 released - posted by Richard Eckart de Castilho <re...@apache.org> on 2022/08/08 20:19:01 UTC, 0 replies.
- [ANNOUNCE] Apache ServiceComb Pack version 0.7.1 Released - posted by Lei Zhang <zh...@apache.org> on 2022/08/09 02:28:54 UTC, 0 replies.
- [ANNOUNCE] Release Apache DolphinScheduler 3.0.0 - posted by Jiajie Zhong <zh...@apache.org> on 2022/08/09 08:12:26 UTC, 0 replies.
- [Announcement] : Apache LDAP API 2.1.1 - posted by Emmanuel Lecharny <el...@apache.org> on 2022/08/09 09:01:11 UTC, 0 replies.
- [ANNOUNCE] Apache HBase 1.7.2 is now available for download - posted by Duo Zhang <zh...@apache.org> on 2022/08/09 12:18:24 UTC, 0 replies.
- [ANNOUNCE] Apache Traffic Server v9.1.3 is Released! - posted by Bryan Call <bc...@apache.org> on 2022/08/09 21:52:38 UTC, 0 replies.
- [ANNOUNCE] Apache Calcite 1.31.0 released - posted by Andrei Sereda <se...@apache.org> on 2022/08/11 01:33:42 UTC, 0 replies.
- [ANNOUNCE] Apache Camel 3.18.1 (LTS) Released - posted by Gregor Zurowski <gz...@apache.org> on 2022/08/11 16:23:33 UTC, 0 replies.
- [ANNOUNCE] Apache Qpid proton-dotnet 1.0.0-M3 released - posted by Timothy Bish <ta...@apache.org> on 2022/08/11 18:58:45 UTC, 0 replies.
- [ANNOUNCE] Apache Jackrabbit 2.21.12 released - posted by Julian Reschke <re...@apache.org> on 2022/08/12 04:30:57 UTC, 0 replies.
- CVE-2022-37400: Apache OpenOffice Static Initialization Vector Allows to Recover Passwords for Web Connections Without Knowing the Master Password - posted by "Carl B. Marcum" <cm...@apache.org> on 2022/08/12 22:38:26 UTC, 0 replies.
- CVE-2022-37401: Apache OpenOffice Weak Master Keys - posted by "Carl B. Marcum" <cm...@apache.org> on 2022/08/12 22:38:45 UTC, 0 replies.
- [ANN] Apache Tomcat 8.5.82 available - posted by Christopher Schultz <sc...@apache.org> on 2022/08/13 14:54:48 UTC, 0 replies.
- Airflow Providers released on August 14, 2022 are ready - posted by Jarek Potiuk <po...@apache.org> on 2022/08/14 16:00:54 UTC, 0 replies.
- [ANNOUNCE] Apache Solr Operator v0.6.0 released - posted by Jason Gerlowski <ge...@apache.org> on 2022/08/15 13:38:29 UTC, 0 replies.
- [Announcement] : Apache LDAP API 2.1.2 - posted by Emmanuel Lecharny <el...@apache.org> on 2022/08/16 06:01:16 UTC, 0 replies.
- Airflow Providers released on August 18, 2022 are ready - posted by Jarek Potiuk <po...@apache.org> on 2022/08/18 10:13:31 UTC, 0 replies.
- The Apache Weekly News Round-up: week ending 19 August 2022 - posted by Swapnil M Mane <sw...@apache.org> on 2022/08/19 18:07:58 UTC, 0 replies.
- [ANNOUNCE] Apache APISIX Java Plugin Runner 0.3.0 has been released - posted by tzssangglass <tz...@apache.org> on 2022/08/20 05:06:34 UTC, 0 replies.
- [ANNOUNCE] Apache Camel 3.14.5 (LTS) Released - posted by Gregor Zurowski <gz...@apache.org> on 2022/08/20 09:28:38 UTC, 0 replies.
- [ANNOUNCE] Apache Flume 1.10.1 released - posted by Ralph Goers <rg...@apache.org> on 2022/08/20 22:50:11 UTC, 0 replies.
- CVE-2022-34916: Apache Flume: Improper Input Validation (JNDI Injection) in JMSMessageConsumer - posted by Ralph Goers <rg...@apache.org> on 2022/08/20 22:55:58 UTC, 0 replies.
- [ANNOUNCE] Apache Airflow 2.3.4 Released - posted by Ephraim Anierobi <ep...@apache.org> on 2022/08/23 14:24:35 UTC, 0 replies.
- CVE-2021-25642: Apache Hadoop YARN remote code execution in ZKConfigurationStore of capacity scheduler - posted by Masatake Iwasaki <iw...@apache.org> on 2022/08/25 11:28:25 UTC, 0 replies.
- CVE-2022-22728: libapreq2: libapreq2 multipart form parse memory corruption - posted by Joe Orton <jo...@apache.org> on 2022/08/25 14:09:16 UTC, 0 replies.
- [ANNOUNCE] Release Apache Traffic Control 7.0.1 - posted by Steve Hamrick <sh...@apache.org> on 2022/08/25 15:33:58 UTC, 0 replies.
- [ANNOUNCE] Apache Beam 2.41.0 Released - posted by Kiley Sok <ki...@apache.org> on 2022/08/25 17:57:15 UTC, 0 replies.
- The Apache Weekly News Round-up: week ending 26 August 2022 - posted by Swapnil M Mane <sw...@apache.org> on 2022/08/26 13:16:29 UTC, 0 replies.
- [ANNOUNCE] Apache APISIX 2.13.3 has been released - posted by Zexuan Luo <sp...@apache.org> on 2022/08/26 13:32:01 UTC, 0 replies.
- Apache Buildr is now retired - posted by Hervé Boutemy <hb...@apache.org> on 2022/08/26 20:35:55 UTC, 0 replies.
- Apache REEF is now retired - posted by Hervé Boutemy <hb...@apache.org> on 2022/08/26 20:38:00 UTC, 0 replies.
- [ANNOUNCE] Apache Fineract 1.8.0 Release - posted by Aleksandar Vidakovic <al...@apache.org> on 2022/08/28 11:04:46 UTC, 0 replies.
- [ANNOUNCE] Apache Qpid ProtonJ2 1.0.0-M8 released - posted by Timothy Bish <ta...@apache.org> on 2022/08/29 16:33:41 UTC, 0 replies.
- [ANNOUNCE] Apache XMLBeans 5.1.1 release - posted by PJ Fanning <fa...@apache.org> on 2022/08/30 08:18:46 UTC, 0 replies.
- CVE-2022-37021: Apache Geode deserialization of untrusted data flaw when using JMX over RMI on Java 8. - posted by Kirk Lund <kl...@apache.org> on 2022/08/30 16:40:52 UTC, 0 replies.
- CVE-2022-37022: Apache Geode deserialization of untrusted data flaw when using JMX over RMI on Java 11 - posted by Kirk Lund <kl...@apache.org> on 2022/08/30 17:06:53 UTC, 0 replies.
- CVE-2022-37023: Apache Geode deserialization of untrusted data flaw when using REST API on Java 8 or Java 11 - posted by Kirk Lund <kl...@apache.org> on 2022/08/30 17:09:20 UTC, 0 replies.