announce@apache.org, 2022-12

You are viewing a plain text version of this content. The canonical link for it is here.

- [ANNOUNCE] Apache Camel 3.18.4 (LTS) Released - posted by Gregor Zurowski <gz...@apache.org> on 2022/12/01 18:37:59 UTC, 0 replies.
- CVE-2022-46366: Apache Tapestry prior to version 4 (EOL) allows RCE though deserialization of untrusted input - posted by Arnout Engelen <en...@apache.org> on 2022/12/02 13:36:02 UTC, 0 replies.
- [ANNOUNCE] Apache Airflow 2.5.0 Released - posted by Ephraim Anierobi <ep...@apache.org> on 2022/12/02 17:07:50 UTC, 0 replies.
- [ANNOUNCE] Apache Commons Net 3.9.0 - posted by Gary Gregory <gg...@apache.org> on 2022/12/02 18:07:39 UTC, 0 replies.
- [ANNOUNCE] Airflow Providers released on December 02, 2022 released - posted by Jarek Potiuk <po...@apache.org> on 2022/12/02 18:16:10 UTC, 0 replies.
- CVE-2021-37533: Apache Commons Net's FTP client trusts the host from PASV response by default - posted by "Gary D. Gregory" <gg...@apache.org> on 2022/12/03 14:39:09 UTC, 0 replies.
- [ANNOUNCE] Apache HBase 2.5.2 is now available for download - posted by Duo Zhang <zh...@apache.org> on 2022/12/05 03:56:14 UTC, 0 replies.
- [ANNOUNCEMENT] HttpComponents Client 4.5.14 GA Released - posted by Oleg Kalnichevski <ol...@apache.org> on 2022/12/05 08:46:07 UTC, 0 replies.
- CVE-2022-45046: Apache Camel: LDAP Injection in Camel-LDAP - posted by Andrea Cosentino <ac...@apache.org> on 2022/12/05 12:17:51 UTC, 0 replies.
- [ANNOUNCE] Apache IoTDB 1.0.0 released - posted by Haonan Hou <ha...@apache.org> on 2022/12/05 12:45:57 UTC, 0 replies.
- [ANN] Apache Tomcat Migration tool for Jakarta EE 1.0.6 - posted by Mark Thomas <ma...@apache.org> on 2022/12/05 14:14:25 UTC, 0 replies.
- [ANN] Apache Tomcat 9.0.70 available - posted by Rémy Maucherat <re...@apache.org> on 2022/12/05 14:46:57 UTC, 0 replies.
- [ANN] Apache Tomcat 11.0.0-M1 (alpha) available - posted by Mark Thomas <ma...@apache.org> on 2022/12/05 17:58:36 UTC, 0 replies.
- CVE-2022-45910: Apache ManifoldCF: LDAP Injection Vulnerability - ActiveDirectory Authorities - posted by Markus Schuch <sc...@apache.org> on 2022/12/06 17:42:05 UTC, 0 replies.
- [ANNOUNCE] Apache Commons BCEL 6.7.0 - posted by Gary Gregory <gg...@apache.org> on 2022/12/06 22:44:06 UTC, 0 replies.
- [ANNOUNCE] Apache ActiveMQ 5.17.3 has been released! - posted by Jean-Baptiste Onofré <jb...@apache.org> on 2022/12/07 08:50:02 UTC, 0 replies.
- [ANNOUNCE] Apache Atlas 2.3.0 released - posted by Madhan Neethiraj <ma...@apache.org> on 2022/12/07 09:07:42 UTC, 0 replies.
- [ANNOUNCE] Apache Commons Statistics Version 1.0 Released - posted by Alex Herbert <ah...@apache.org> on 2022/12/07 12:29:58 UTC, 0 replies.
- [ANNOUNCE] Apache Doris 1.2.0 release - posted by ChenMingyu <mo...@apache.org> on 2022/12/07 15:43:32 UTC, 0 replies.
- [ANNOUNCE] Apache NiFi 1.19.1 release. - posted by Joe Witt <jo...@apache.org> on 2022/12/07 17:24:10 UTC, 0 replies.
- [ANNOUNCE] Release Apache DolphinScheduler 3.0.3 - posted by Jay Chung <zh...@apache.org> on 2022/12/08 10:41:13 UTC, 0 replies.
- [ANNOUNCEMENT] HttpComponents Client 5.2.1 GA Released - posted by Oleg Kalnichevski <ol...@apache.org> on 2022/12/08 13:45:51 UTC, 0 replies.
- [ANNOUNCE] Apache SkyWalking NodeJS 0.6.0 is available - posted by kezhenxu94 <ke...@apache.org> on 2022/12/09 01:05:05 UTC, 0 replies.
- [ANNOUNCE] Apache Jackrabbit 2.21.14 released - posted by Julian Reschke <re...@apache.org> on 2022/12/09 08:20:17 UTC, 0 replies.
- [ANNOUNCE] Apache Hop 2.2.0 - posted by Bart Maertens <ba...@apache.org> on 2022/12/09 10:06:44 UTC, 0 replies.
- [ANNOUNCE] Apache ShardingSphere 5.3.0 available - posted by 吴伟杰 <wu...@apache.org> on 2022/12/09 11:35:49 UTC, 0 replies.
- [ANN] Apache Tomcat 10.1.4 available - posted by Mark Thomas <ma...@apache.org> on 2022/12/09 14:28:08 UTC, 0 replies.
- [ANNOUNCE] Apache ShardingSphere on Cloud 0.1.1 available - posted by 吴伟杰 <wu...@apache.org> on 2022/12/10 05:25:19 UTC, 0 replies.
- [ANN] Apache Syncope 2.1.13 - posted by Francesco Chicchiriccò <il...@apache.org> on 2022/12/12 11:47:55 UTC, 0 replies.
- [ANNOUNCE] Released Reactive client for Apache Pulsar, version 0.1.0 - posted by Lari Hotari <lh...@apache.org> on 2022/12/12 13:19:27 UTC, 0 replies.
- [ANNOUNCE] Apache Impala 4.2.0 release - posted by Daniel Becker <db...@apache.org> on 2022/12/12 13:30:46 UTC, 0 replies.
- [ANNOUNCE] Apache Qpid proton-dotnet 1.0.0-M7 released - posted by Timothy Bish <ta...@apache.org> on 2022/12/12 16:33:44 UTC, 0 replies.
- [ANNOUNCE] Apache NiFi MiNiFi C++ 0.13.0 release - posted by Ferenc Gerlits <fg...@apache.org> on 2022/12/13 11:28:23 UTC, 0 replies.
- CVE-2022-46363: Apache CXF directory listing / code exfiltration - posted by Colm O hEigeartaigh <co...@apache.org> on 2022/12/13 14:37:13 UTC, 0 replies.
- [ANN] End of life for Apache Tomcat 8.5.x - posted by Mark Thomas <ma...@apache.org> on 2022/12/13 14:41:36 UTC, 1 replies.
- CVE-2022-46364: Apache CXF SSRF Vulnerability - posted by Colm O hEigeartaigh <co...@apache.org> on 2022/12/13 15:16:11 UTC, 0 replies.
- CVE-2022-34271: Apache Atlas: zip path traversal in import functionality - posted by Madhan Neethiraj <ma...@apache.org> on 2022/12/14 01:07:22 UTC, 0 replies.
- [ANNOUNCE] Apache Pulsar Client C++ 3.1.0 released - posted by Zike Yang <zi...@apache.org> on 2022/12/15 06:44:19 UTC, 0 replies.
- CVE-2022-32531: Apache BookKeeper: Java Client Uses Connection to Host that Failed Hostname Verification - posted by Enrico Olivelli <eo...@apache.org> on 2022/12/15 09:15:09 UTC, 0 replies.
- [ANNOUNCE] Apache NetBeans 16 released - posted by Geertjan Wielenga <ge...@apache.org> on 2022/12/15 10:40:35 UTC, 0 replies.
- [ANNOUNCE] Apache Traffic Server 9.1.4 and 8.1.6 are Released - posted by Bryan Call <bc...@apache.org> on 2022/12/15 20:33:04 UTC, 0 replies.
- CVE-2021-28655: Apache Zeppelin: Arbitrary file deletion vulnerability - posted by Arnout Engelen <en...@apache.org> on 2022/12/16 12:48:32 UTC, 0 replies.
- CVE-2022-46870: Apache Zeppelin: Stored XSS in note permissions - posted by Arnout Engelen <en...@apache.org> on 2022/12/16 12:54:20 UTC, 0 replies.
- CVE-2022-47500: Apache Helix: Open redirect - posted by Junkai Xue <jx...@apache.org> on 2022/12/16 22:38:23 UTC, 0 replies.
- [ANNOUNCE] Apache Camel 3.14.7 (LTS) Released - posted by Gregor Zurowski <gz...@apache.org> on 2022/12/17 12:48:09 UTC, 0 replies.
- [ANNOUNCE] Apache SpamAssassin 4.0.0 available - posted by Sidney Markowitz <si...@apache.org> on 2022/12/17 12:48:32 UTC, 0 replies.
- [ANNOUNCE] Ignite Spark Extension 2.0.0 and 3.0.0 Released - posted by Maxim Muzafarov <mm...@apache.org> on 2022/12/19 21:42:37 UTC, 0 replies.
- [ANNOUNCE] Airflow Providers released on December 14, 2022 are ready - posted by Elad Kalif <el...@apache.org> on 2022/12/19 21:45:19 UTC, 0 replies.
- [ANNOUNCEMENT] Apache SkyWalking Rover 0.4.0 Released - posted by han liu <li...@apache.org> on 2022/12/20 07:40:04 UTC, 0 replies.
- CVE-2022-46421: Apache Airflow Hive Provider: Hive Provider RCE vulnerability with hive_cli_params - posted by Jarek Potiuk <po...@apache.org> on 2022/12/20 10:08:46 UTC, 0 replies.
- [ANNOUNCE] Apache Camel 3.20.0 (LTS) Released - posted by Gregor Zurowski <gz...@apache.org> on 2022/12/21 15:04:15 UTC, 0 replies.
- CVE-2022-40145: Apache Karaf: JDBC JAAS LDAP injection - posted by Jean-Baptiste Onofré <jb...@apache.org> on 2022/12/21 15:53:26 UTC, 0 replies.
- CVE-2022-45347: Apache ShardingSphere-Proxy: ShardingSphere-Proxy MySQL authentication bypass - posted by Weijie Wu <wu...@apache.org> on 2022/12/22 09:35:08 UTC, 0 replies.
- [ANNOUNCE] Commons Math 4.0-beta1 - posted by Gilles Sadowski <er...@apache.org> on 2022/12/22 22:44:03 UTC, 0 replies.
- [ANNOUNCE] Apache Groovy 2.5.20 Released - posted by Paul King <pa...@apache.org> on 2022/12/24 05:26:45 UTC, 0 replies.
- [ANNOUNCE] Apache Groovy 3.0.14 Released - posted by Paul King <pa...@apache.org> on 2022/12/24 09:16:26 UTC, 0 replies.
- [ANNOUNCE] Apache Groovy 4.0.7 Released - posted by Paul King <pa...@apache.org> on 2022/12/24 11:47:45 UTC, 0 replies.
- [ANNOUNCE] Apache SIS 1.3 Release - posted by Martin Desruisseaux <de...@apache.org> on 2022/12/26 11:40:35 UTC, 0 replies.
- [ANNOUNCE] Apache Pulsar Client Python 3.0.0 released - posted by Yunze Xu <xy...@apache.org> on 2022/12/27 10:06:37 UTC, 0 replies.
- CVE-2022-43396: Apache Kylin: Command injection by Useless configuration - posted by Xiaoxiang Yu <xx...@apache.org> on 2022/12/30 06:52:17 UTC, 0 replies.
- CVE-2022-44621: Apache Kylin: Command injection by Diagnosis Controller - posted by Xiaoxiang Yu <xx...@apache.org> on 2022/12/30 07:15:23 UTC, 0 replies.
- [ANNOUNCE] Apache APISIX 3.1.0 has been released - posted by Zexuan Luo <sp...@apache.org> on 2022/12/30 08:47:31 UTC, 0 replies.