announce@apache.org, 2024-01

You are viewing a plain text version of this content. The canonical link for it is here.

- [ANNOUNCE] Log4cxx 1.2.0 Released - posted by Robert Middleton <rm...@apache.org> on 2024/01/01 18:48:57 UTC, 0 replies.
- [ANNOUNCE] Apache IoTDB 1.3.0 released - posted by Haonan Hou <ha...@apache.org> on 2024/01/02 01:46:16 UTC, 0 replies.
- CVE-2023-47804: Apache OpenOffice: Macro URL arbitrary script execution - posted by Marcus <ma...@apache.org> on 2024/01/02 14:54:25 UTC, 0 replies.
- CVE-2022-43680: Apache OpenOffice: "Use after free" fixed in libexpat - posted by Marcus <ma...@apache.org> on 2024/01/02 14:54:30 UTC, 0 replies.
- CVE-2012-5639: Apache OpenOffice: Loading internal / external resources without warning - posted by Marcus <ma...@apache.org> on 2024/01/02 14:54:30 UTC, 0 replies.
- CVE-2023-1183: Apache OpenOffice: Arbitrary file write in Apache OpenOffice Base - posted by Marcus <ma...@apache.org> on 2024/01/02 14:54:31 UTC, 0 replies.
- [ANNOUNCE] Apache Airflow Providers prepared on December 31, 2023 are released - posted by Jarek Potiuk <po...@apache.org> on 2024/01/02 15:59:36 UTC, 0 replies.
- CVE-2023-51784: Apache InLong: Remote Code Execution vulnerability in Apache InLong Manager - posted by Charles Zhang <do...@apache.org> on 2024/01/03 02:05:18 UTC, 0 replies.
- CVE-2023-51785: Apache InLong: Arbitrary File Read Vulnerability in Apache InLong Manager - posted by Charles Zhang <do...@apache.org> on 2024/01/03 02:05:28 UTC, 0 replies.
- [ANNOUNCE] Apache Pulsar 2.11.3 released - posted by Baodi Shi <ba...@apache.org> on 2024/01/03 07:13:42 UTC, 0 replies.
- [ANNOUNCE] Apache Pulsar Client Python 3.4.0 released - posted by Zike Yang <zi...@apache.org> on 2024/01/03 10:41:47 UTC, 0 replies.
- [ANN] Apache Causeway version 2.0.0-RC4 Released - posted by Dan Haywood <da...@apache.org> on 2024/01/03 11:13:42 UTC, 0 replies.
- [ANNOUNCE] Apache Pulsar 3.1.2 released - posted by houxiaoyu <ho...@apache.org> on 2024/01/04 02:46:18 UTC, 0 replies.
- Fwd: [ANNOUNCE] Apache Hudi 0.14.1 released - posted by Sivabalan <si...@apache.org> on 2024/01/05 05:15:30 UTC, 0 replies.
- CVE-2023-51441: Apache Axis 1.x (EOL) may allow SSRF when untrusted input is passed to the service admin HTTP API - posted by Arnout Engelen <en...@apache.org> on 2024/01/05 15:20:43 UTC, 0 replies.
- [ANNOUNCE] Beam 2.53.0 Released - posted by Jack McCluskey <jr...@apache.org> on 2024/01/05 20:04:15 UTC, 0 replies.
- [ANNOUNCE] Apache Commons Exec Version 1.4.0 - posted by Gary Gregory <gg...@apache.org> on 2024/01/06 14:56:07 UTC, 0 replies.
- [ANNOUNCE] Apache JMeter 5.6.3 released - posted by Milamber <mi...@apache.org> on 2024/01/07 17:22:29 UTC, 0 replies.
- [ANNOUNCE] Apache Curator 5.6.0 released - posted by tison <ti...@apache.org> on 2024/01/08 08:58:30 UTC, 0 replies.
- [ANNOUNCE] Apache Arrow ADBC 0.9.0 released - posted by David Li <li...@apache.org> on 2024/01/08 17:44:56 UTC, 0 replies.
- [ANNOUNCE] Apache Creadur RAT 0.16 released - posted by "P. Ottlinger" <po...@apache.org> on 2024/01/08 23:00:53 UTC, 0 replies.
- [ANNOUNCE] Apache Pekko (Incubating) gRPC 1.0.2 available - posted by PJ Fanning <fa...@apache.org> on 2024/01/09 12:35:07 UTC, 0 replies.
- Apache Tomcat 10.1.18 Available - posted by Christopher Schultz <sc...@apache.org> on 2024/01/09 15:08:40 UTC, 0 replies.
- Apache Tomcat 8.5.98 Available - posted by Christopher Schultz <sc...@apache.org> on 2024/01/09 15:19:23 UTC, 0 replies.
- [ANN] Apache Tomcat 11.0.0-M16 (alpha) available - posted by Mark Thomas <ma...@apache.org> on 2024/01/09 17:32:07 UTC, 0 replies.
- [ANN] Apache Tomcat 9.0.85 available - posted by Rémy Maucherat <re...@apache.org> on 2024/01/09 19:47:27 UTC, 0 replies.
- CVE-2023-49619: Apache Answer: Repeated submissions using scripts resulted in an abnormal number of collections for questions. - posted by Enxin Xie <li...@apache.org> on 2024/01/10 03:43:06 UTC, 0 replies.
- [ANNOUNCE] Apache Airflow Providers prepared on January 07, 2024 are released - posted by Elad Kalif <el...@apache.org> on 2024/01/10 18:59:17 UTC, 0 replies.
- [ANN] Apache Karaf OSGi Runtime 4.4.5 has been released! - posted by Jean-Baptiste Onofré <jb...@apache.org> on 2024/01/11 06:29:07 UTC, 0 replies.
- [ANNOUNCE] Apache Jackrabbit 2.20.14 released - posted by Julian Reschke <re...@apache.org> on 2024/01/11 08:40:22 UTC, 0 replies.
- [ANN] Apache Cocoon 2.1 and 3.0 retired - posted by Cédric Damioli <cd...@apache.org> on 2024/01/12 13:58:37 UTC, 0 replies.
- CVE-2023-46749: Apache Shiro before 1.130 or 2.0.0-alpha-4, may be susceptible to a path traversal attack that results in an authentication bypass when used together with path rewriting - posted by Brian Demers <bd...@apache.org> on 2024/01/12 16:21:39 UTC, 0 replies.
- [ANNOUNCE] Apache Qpid protonj2 1.0.0-M19 - posted by Timothy Bish <ta...@apache.org> on 2024/01/12 18:25:18 UTC, 0 replies.
- CVE-2023-50290: Apache Solr: Host environment variables are published via the Metrics API - posted by Houston Putman <ho...@apache.org> on 2024/01/12 19:34:48 UTC, 0 replies.
- [ANNOUNCE] Apache Commons BCEL 6.8.1 - posted by Gary Gregory <gg...@apache.org> on 2024/01/13 02:47:52 UTC, 0 replies.
- CVE-2023-46226: Apache IoTDB: Remote Code Execution (RCE) risk via the UDF - posted by Haonan Hou <ha...@apache.org> on 2024/01/15 10:05:39 UTC, 0 replies.
- [ANNOUNCE] Apache APISIX 3.8.0 has been released - posted by Xin Rong <al...@apache.org> on 2024/01/15 12:00:00 UTC, 0 replies.
- [ANNOUNCE] Released Reactive client for Apache Pulsar, version 0.5.2 - posted by Chris Bono <on...@apache.org> on 2024/01/15 19:04:42 UTC, 0 replies.
- [ANNOUNCE] Apache Sedona 1.5.1 released - posted by Jia Yu <ji...@apache.org> on 2024/01/18 00:11:06 UTC, 0 replies.
- [ANNOUNCE] Apache MINA SSHD 2.12.0 released - posted by Guillaume Nodet <gn...@apache.org> on 2024/01/18 10:20:20 UTC, 0 replies.
- [ANN] Apache Maven 4.0.0-alpha-12 released - posted by Guillaume Nodet <gn...@apache.org> on 2024/01/18 10:31:29 UTC, 0 replies.
- [ANNOUNCE] Apache Solr 9.4.1 released - posted by David Smiley <ds...@apache.org> on 2024/01/18 20:18:51 UTC, 0 replies.
- [ANNOUNCE] Apache Directory SCIMple 1.0.0-M1 released - posted by Brian Demers <bd...@apache.org> on 2024/01/19 00:40:13 UTC, 0 replies.
- [ANNOUNCE] Apache Groovy 4.0.18 Released - posted by Paul King <pa...@apache.org> on 2024/01/19 06:19:06 UTC, 0 replies.
- [SECURITY] CVE-2024-21733 Apache Tomcat - Information Disclosure - posted by Mark Thomas <ma...@apache.org> on 2024/01/19 10:17:23 UTC, 1 replies.
- [ANNOUNCE] Apache HBase 3.0.0-beta-1 is now available for download - posted by Duo Zhang <zh...@apache.org> on 2024/01/19 10:34:48 UTC, 0 replies.
- [ANNOUNCE] Apache Groovy 5.0.0-alpha-5 Released - posted by Paul King <pa...@apache.org> on 2024/01/19 12:24:30 UTC, 0 replies.
- [ANNOUNCE] Apache Airflow 2.8.1 Released - posted by Ephraim Anierobi <ep...@apache.org> on 2024/01/19 13:09:41 UTC, 0 replies.
- [ANNOUNCE] Apache UIMA Ruta v3.4.0 released - posted by Richard Eckart de Castilho <re...@apache.org> on 2024/01/20 09:20:28 UTC, 0 replies.
- [ANNOUNCE] Release Apache OpenDAL 0.44.2 - posted by Manjusaka <ma...@apache.org> on 2024/01/20 17:14:38 UTC, 0 replies.
- [ANNOUNCE] Apache Arrow 15.0.0 released - posted by Raúl Cumplido <ra...@apache.org> on 2024/01/22 11:19:36 UTC, 0 replies.
- CVE-2023-49657: Apache Superset: Stored XSS in Dashboard Title and Chart Title - posted by Daniel Gaspar <dp...@apache.org> on 2024/01/23 13:18:12 UTC, 0 replies.
- CVE-2023-51702: Apache Airflow CNCF Kubernetes provider, Apache Airflow: Kubernetes configuration file saved without encryption in the Metadata and logged as plain text in the Triggerer service - posted by Ephraim Anierobi <ep...@apache.org> on 2024/01/24 11:06:28 UTC, 0 replies.
- CVE-2023-50943: Apache Airflow: Potential pickle deserialization vulnerability in XComs - posted by Ephraim Anierobi <ep...@apache.org> on 2024/01/24 11:06:36 UTC, 0 replies.
- CVE-2023-50944: Apache Airflow: Bypass permission verification to read code of other dags - posted by Ephraim Anierobi <ep...@apache.org> on 2024/01/24 11:06:48 UTC, 0 replies.
- [ANNOUNCEMENT] HttpComponents Client 5.3.1 GA Released - posted by Oleg Kalnichevski <ol...@apache.org> on 2024/01/25 09:24:40 UTC, 0 replies.
- [ANNOUNCE] Apache Pulsar Helm Chart version 3.2.0 Released - posted by Lari Hotari <lh...@apache.org> on 2024/01/25 15:42:21 UTC, 0 replies.
- [ANNOUNCE] Apache Pekko (Incubating) Connectors 1.0.2 available - posted by PJ Fanning <fa...@apache.org> on 2024/01/26 12:58:16 UTC, 0 replies.
- [ANNOUNCE] Apache Airflow Providers prepared on January 26, 2024 are released - posted by Jarek Potiuk <po...@apache.org> on 2024/01/27 20:59:29 UTC, 0 replies.
- [ANNOUNCE] Apache Creadur RAT 0.16.1 released - posted by "P. Ottlinger" <po...@apache.org> on 2024/01/28 20:52:59 UTC, 0 replies.
- [ANNOUNCE] Apache Pulsar Go Client 0.12.0 released - posted by Zike Yang <zi...@apache.org> on 2024/01/29 03:09:12 UTC, 0 replies.
- CVE-2023-29055: Apache Kylin: Insufficiently protected credentials in config file - posted by Li Yang <li...@apache.org> on 2024/01/29 11:06:04 UTC, 0 replies.
- [ANNOUNCE] Apache Lucene 9.9.2 released - posted by Chris Hegarty <ch...@apache.org> on 2024/01/29 15:46:49 UTC, 0 replies.
- [ANNOUNCE] MyFaces Core v4.1.0-RC1 Release - posted by Volodymyr Siedlecki <vo...@apache.org> on 2024/01/29 17:48:19 UTC, 0 replies.
- [ANNOUNCE] Apache NiFi 2.0.0-M2 Released - posted by David Handermann <ex...@apache.org> on 2024/01/29 17:56:47 UTC, 0 replies.
- [ANNOUNCE] Apache Camel 3.21.4 (LTS) Released - posted by Gregor Zurowski <gz...@apache.org> on 2024/01/29 18:23:00 UTC, 0 replies.
- [ANNOUNCE] Apache Camel 3.22.1 (LTS) Released - posted by Gregor Zurowski <gz...@apache.org> on 2024/01/31 08:00:20 UTC, 0 replies.
- [ANNOUNCE] Apache Geronimo Arthur 1.0.8 release - posted by fpapon <fp...@apache.org> on 2024/01/31 10:16:27 UTC, 0 replies.
- [ANNOUNCE] Release Apache Traffic Control 8.0.0 - posted by R S <rs...@apache.org> on 2024/01/31 16:56:37 UTC, 0 replies.