announce@apache.org, 2023-02

You are viewing a plain text version of this content. The canonical link for it is here.

- CVE-2023-24977: Apache InLong: Jdbc Connection causes arbitrary file reading in InLong - posted by Charles Zhang <do...@apache.org> on 2023/02/01 03:35:33 UTC, 0 replies.
- CVE-2023-24997: Apache InLong: Jdbc Connection Security Bypass in InLong - posted by Charles Zhang <do...@apache.org> on 2023/02/01 10:43:09 UTC, 0 replies.
- [ANNOUNCE] Apache Flink 1.16.1 released - posted by Martijn Visser <ma...@apache.org> on 2023/02/01 19:34:08 UTC, 0 replies.
- [ANNOUNCEMENT] Apache Portable Runtime 1.7.2 Released - posted by covener <co...@apache.org> on 2023/02/01 23:54:41 UTC, 0 replies.
- [ANNOUNCEMENT] Apache Portable Runtime Utility 1.6.3 Released - posted by covener <co...@apache.org> on 2023/02/01 23:55:01 UTC, 0 replies.
- [ANNOUNCE] Apache UIMA Java SDK version 3.4.0 released - posted by Richard Eckart de Castilho <re...@apache.org> on 2023/02/02 10:12:20 UTC, 0 replies.
- [ANNOUNCE] Apache Arrow 11.0.0 released - posted by Raúl Cumplido <ra...@apache.org> on 2023/02/02 12:22:54 UTC, 0 replies.
- [ANNOUCEMENT] Apache Commons CSV 1.10.0 - posted by Gary Gregory <gg...@apache.org> on 2023/02/02 14:17:26 UTC, 0 replies.
- CVE-2022-45786: Apache AGE: Python and Golang drivers allow data manipulation and exposure due to SQL injection - posted by John Gemignani <jg...@apache.org> on 2023/02/03 23:28:16 UTC, 0 replies.
- CVE-2023-22849: Apache Sling App CMS: XSS in CMS Reference / UI Components - posted by Dan Klco <dk...@apache.org> on 2023/02/03 23:38:07 UTC, 0 replies.
- [ANNOUNCE] Apache ShenYu 2.5.1 available - posted by Liu Liang <mi...@apache.org> on 2023/02/04 14:11:37 UTC, 0 replies.
- [ANNOUNCE] Apache Camel 4.0.0-M1 Released - posted by Gregor Zurowski <gz...@apache.org> on 2023/02/04 21:41:10 UTC, 0 replies.
- [ANNOUNCE] Apache HBase 2.4.16 is now available for download - posted by Duo Zhang <zh...@apache.org> on 2023/02/05 13:25:56 UTC, 0 replies.
- [ANNOUNCE] Apache HBase 2.5.3 is now available for download - posted by "Tak Lon (Stephen) Wu" <ta...@apache.org> on 2023/02/06 07:04:59 UTC, 0 replies.
- [ANNOUNCE] Release Apache Hop 2.3.0 - posted by Bart Maertens <ba...@apache.org> on 2023/02/06 09:47:58 UTC, 0 replies.
- ANNOUNCE] Apache Tika 2.7.0 released - posted by Tim Allison <ta...@apache.org> on 2023/02/06 17:15:47 UTC, 0 replies.
- [ANNOUNCE] Apache Airflow Helm Chart version 1.8.0 Released - posted by Jedidiah Cunningham <je...@apache.org> on 2023/02/06 18:23:15 UTC, 0 replies.
- [ANNOUNCE] Apache YuniKorn v1.2.0 released - posted by Wilfred Spiegelenburg <wi...@apache.org> on 2023/02/07 06:33:31 UTC, 0 replies.
- [ANNOUNCE] Released Reactive client for Apache Pulsar, version 0.2.0 - posted by Christophe Bornet <cb...@apache.org> on 2023/02/07 11:32:49 UTC, 0 replies.
- [ANNOUNCE] Apache Camel 3.20.2 (LTS) Released - posted by Gregor Zurowski <gz...@apache.org> on 2023/02/07 14:25:40 UTC, 0 replies.
- [ANNOUNCE] Apache bRPC 1.4.0 Released - posted by Xiaofeng <xi...@apache.org> on 2023/02/07 14:26:15 UTC, 0 replies.
- [ANNOUNCE] Apache Kafka 3.4.0 - posted by David Arthur <da...@apache.org> on 2023/02/07 17:01:01 UTC, 0 replies.
- CVE-2023-25194: Apache Kafka: Possible RCE/Denial of service attack via SASL JAAS JndiLoginModule configuration using Kafka Connect - posted by Manikumar <ma...@apache.org> on 2023/02/07 18:12:10 UTC, 0 replies.
- [ANNOUNCE] Apache APISIX 2.15.2 has been released - posted by Zexuan Luo <sp...@apache.org> on 2023/02/08 10:15:09 UTC, 0 replies.
- [ANNOUNCE] Apache UIMA uimaFIT version 3.4.0 released - posted by Richard Eckart de Castilho <re...@apache.org> on 2023/02/08 10:43:38 UTC, 0 replies.
- [ANNOUNCE] Apache Groovy 3.0.15 Released - posted by Paul King <pa...@apache.org> on 2023/02/08 22:44:31 UTC, 0 replies.
- [ANNOUNCE] Apache Groovy 4.0.9 Released - posted by Paul King <pa...@apache.org> on 2023/02/09 00:49:37 UTC, 0 replies.
- [ANNOUNCE] Apache NiFi 1.20.0 release. - posted by Joe Witt <jo...@apache.org> on 2023/02/09 22:29:55 UTC, 0 replies.
- CVE-2023-22832: Apache NiFi: Improper Restriction of XML External Entity References in ExtractCCDAAttributes - posted by David Handermann <ex...@apache.org> on 2023/02/09 23:12:45 UTC, 0 replies.
- [ANNOUNCE] Apache SkyWalking BanyanDB Java Client 0.3.0 released - posted by Jiajing LU <lu...@apache.org> on 2023/02/10 15:43:05 UTC, 0 replies.
- [ANNOUNCE] Apache Jackrabbit 2.21.15 released - posted by Julian Reschke <re...@apache.org> on 2023/02/11 06:10:32 UTC, 0 replies.
- [ANNOUNCE] Apache Airflow Providers prepared on February 08, 2023 released - posted by Elad Kalif <el...@apache.org> on 2023/02/11 18:45:55 UTC, 0 replies.
- [ANNOUNCE] Apache Commons FIleUpload 1.5 Released - posted by Mark Thomas <ma...@apache.org> on 2023/02/13 16:20:14 UTC, 0 replies.
- [ANN] Apache Tomcat Native 1.2.36 released - posted by Mark Thomas <ma...@apache.org> on 2023/02/13 20:54:35 UTC, 0 replies.
- [ANN] Apache Tomcat Native 2.0.3 released - posted by Mark Thomas <ma...@apache.org> on 2023/02/13 20:55:08 UTC, 0 replies.
- [ANNOUNCE] Apache OpenMeetings 7.0.0 is released - posted by Maxim Solodovnik <so...@apache.org> on 2023/02/14 03:03:46 UTC, 0 replies.
- CVE-2023-25141: JNDI injection into Apache sling-org-apache-sling-jcr-base - posted by Angela Schreiber <an...@apache.org> on 2023/02/14 10:26:46 UTC, 0 replies.
- CVE-2022-42735: Apache ShenYu Admin ultra vires - posted by Zhang Yonglun <zh...@apache.org> on 2023/02/15 03:11:22 UTC, 0 replies.
- [ANNOUNCE] Apache Arrow ADBC 0.2.0 Released - posted by David Li <li...@apache.org> on 2023/02/15 20:42:06 UTC, 0 replies.
- [ANNOUNCE] Apache Pulsar Client C++ 3.1.2 released - posted by Yunze Xu <xy...@apache.org> on 2023/02/17 10:00:11 UTC, 0 replies.
- [ANNOUNCE] Apache Doris 1.2.2 release - posted by ChenMingyu <mo...@apache.org> on 2023/02/17 14:46:00 UTC, 0 replies.
- [ANNOUNCE] MyFaces Core v4.0.0-RC5 Release - posted by Volodymyr Siedlecki <vo...@apache.org> on 2023/02/17 16:09:46 UTC, 0 replies.
- [ANNOUNCE] Apache Guacamole 1.5.0 - posted by Michael Jumper <mj...@apache.org> on 2023/02/19 18:39:45 UTC, 0 replies.
- [ANNOUNCE] Apache BookKeeper 4.14.7 released - posted by Hang Chen <ch...@apache.org> on 2023/02/20 08:53:41 UTC, 0 replies.
- CVE-2023-25613: LDAP Injection Vulnerability in Apache Kerby - posted by Colm O hEigeartaigh <co...@apache.org> on 2023/02/20 10:16:07 UTC, 0 replies.
- [ANN] Apache Syncope 3.0.2 - posted by Francesco Chicchiriccò <il...@apache.org> on 2023/02/20 10:26:03 UTC, 0 replies.
- [SECURITY] CVE-2023-24998 Apache Commons FileUpload - DoS with excessive parts - posted by Mark Thomas <ma...@apache.org> on 2023/02/20 15:55:04 UTC, 0 replies.
- [SECURITY] CVE-2023-24998 Apache Tomcat - FileUpload DoS with excessive parts - posted by Mark Thomas <ma...@apache.org> on 2023/02/20 16:36:58 UTC, 1 replies.
- [ANNOUNCE] Airflow Providers prepared on February 18, 2023 are ready - posted by Elad Kalif <el...@apache.org> on 2023/02/21 21:42:04 UTC, 0 replies.
- [ANNOUNCE] Apache IoTDB 1.0.1 released - posted by Gaofei Cao <ca...@apache.org> on 2023/02/22 03:05:40 UTC, 0 replies.
- [ANN] Apache ActiveMQ 5.16.6 has been released! - posted by Jean-Baptiste Onofré <jb...@apache.org> on 2023/02/22 05:43:12 UTC, 0 replies.
- [ANNOUNCE] Apache Log4j 2.20.0 released - posted by Ralph Goers <rg...@apache.org> on 2023/02/22 05:52:08 UTC, 0 replies.
- [ANNOUNCE] Apache Kvrocks(incubating) 2.3.0 Released - posted by Pengbo Cai <ca...@apache.org> on 2023/02/22 15:23:12 UTC, 0 replies.
- [ANNOUNCE] Apache IoTDB 0.13.4 released - posted by 刘旭鑫 <ma...@apache.org> on 2023/02/23 05:00:37 UTC, 0 replies.
- CVE-2023-25621: Apache Sling does not allow to handle i18n content in a secure way - posted by Carsten Ziegeler <cz...@apache.org> on 2023/02/23 08:40:58 UTC, 0 replies.
- [ANN] Apache Tomcat 9.0.72 available - posted by Rémy Maucherat <re...@apache.org> on 2023/02/23 13:14:58 UTC, 0 replies.
- [ANN] Apache Tomcat 11.0.0-M3 (alpha) available - posted by Mark Thomas <ma...@apache.org> on 2023/02/23 14:11:48 UTC, 0 replies.
- [ANNOUNCE] Apache HugeGraph(incubating) 1.0.0 available - posted by Imba Jin <ji...@apache.org> on 2023/02/23 16:29:35 UTC, 0 replies.
- CVE-2023-25691: Apache Airflow Google Provider: Google Cloud Sql Provider Remote Command Execution - posted by Jarek Potiuk <po...@apache.org> on 2023/02/23 17:16:40 UTC, 1 replies.
- CVE-2023-25692: Apache Airflow Google Provider: Google Cloud Sql Provider Denial Of Service - posted by Jarek Potiuk <po...@apache.org> on 2023/02/23 17:43:11 UTC, 0 replies.
- CVE-2023-25693: Sqoop Apache Airflow Provider Remote Code Execution Vulnerability - posted by Jarek Potiuk <po...@apache.org> on 2023/02/23 17:43:54 UTC, 0 replies.
- CVE-2023-25696: Apache Airflow Hive Provider Beeline RCE - posted by Jarek Potiuk <po...@apache.org> on 2023/02/23 17:45:35 UTC, 0 replies.
- CVE-2023-25956: Apache Airflow AWS Provider: Arbitrary file read via AWS provider - posted by Jarek Potiuk <po...@apache.org> on 2023/02/23 17:48:43 UTC, 0 replies.
- [ANNOUNCE] Apache UIMA Java SDK version 3.4.1 released - posted by Richard Eckart de Castilho <re...@apache.org> on 2023/02/24 08:35:24 UTC, 0 replies.
- [ANNOUNCE] Apache UIMA Ruta v3.3.0 released - posted by Richard Eckart de Castilho <re...@apache.org> on 2023/02/24 11:13:55 UTC, 0 replies.
- [ANN] Apache Tomcat 8.5.86 available - posted by Christopher Schultz <sc...@apache.org> on 2023/02/24 17:25:43 UTC, 0 replies.
- [ANN] Apache Tomcat 10.1.6 available - posted by Christopher Schultz <sc...@apache.org> on 2023/02/24 17:57:34 UTC, 0 replies.
- [ANNOUNCE] Apache DolphinScheduler SDK Python 4.0.1 Released - posted by Jay Chung <zh...@apache.org> on 2023/02/25 03:45:06 UTC, 0 replies.
- [ANN] Apache Karaf Decanter 2.10.0 has been released! - posted by Jean-Baptiste Onofré <jb...@apache.org> on 2023/02/25 06:18:04 UTC, 0 replies.
- [ANN] Apache ActivveMQ "Classic" 5.17.4 has been released! - posted by Jean-Baptiste Onofré <jb...@apache.org> on 2023/02/26 05:42:14 UTC, 0 replies.
- Apache jUDDI is now retired - posted by Hervé Boutemy <hb...@apache.org> on 2023/02/26 17:27:57 UTC, 0 replies.
- [ANNOUNCEMENT] Apache SkyWalking BanyanDB 0.3.1 Released - posted by Hongtao Gao <ha...@apache.org> on 2023/02/26 23:20:59 UTC, 0 replies.
- [ANNOUNCEMENT] Apache Juneau 9.0.0 Released - posted by James Bognar <ja...@apache.org> on 2023/02/27 14:15:32 UTC, 0 replies.
- [ANNOUNCE] OpenNLP 2.1.1 released - posted by Jeff Zemerick <jz...@apache.org> on 2023/02/27 19:05:17 UTC, 0 replies.
- [ANNOUNCE] Apache OpenOffice 4.1.14 released - posted by Carl Marcum <cm...@apache.org> on 2023/02/27 20:00:07 UTC, 0 replies.
- [ANNOUNCE] Apache NetBeans 17 released - posted by Geertjan Wielenga <ge...@apache.org> on 2023/02/28 11:34:08 UTC, 0 replies.