You are viewing a plain text version of this content. The canonical link for it is here.
Posted to commits@santuario.apache.org by sc...@apache.org on 2018/08/02 23:42:58 UTC
svn commit: r1033440 - in /websites/production/santuario/content:
cache/main.pageCache cindex.html download.html index.html oldnews.html
Author: scantor
Date: Thu Aug 2 23:42:58 2018
New Revision: 1033440
Log:
Update to site for 2.0.1 C++ release.
Modified:
websites/production/santuario/content/cache/main.pageCache
websites/production/santuario/content/cindex.html
websites/production/santuario/content/download.html
websites/production/santuario/content/index.html
websites/production/santuario/content/oldnews.html
Modified: websites/production/santuario/content/cache/main.pageCache
==============================================================================
Binary files - no diff available.
Modified: websites/production/santuario/content/cindex.html
==============================================================================
--- websites/production/santuario/content/cindex.html (original)
+++ websites/production/santuario/content/cindex.html Thu Aug 2 23:42:58 2018
@@ -99,7 +99,7 @@ Apache Santuario -- c_index
<td height="100%">
<!-- Content -->
<div class="wiki-content">
-<div id="ConfluenceContent"><h1 id="c_index-ApacheXMLSecurityforC++">Apache XML Security for C++</h1><h3 id="c_index-Overview">Overview</h3><p>The Apache XML Security for C++ library is an implementation of the XML Digital Signature and Encryption specifications, along with some additional XKMS code. It is designed to be easily ported to new platforms, and is generally tested on Windows, Linux, OS X, and Solaris. Other platforms with autoconf support may also work.</p><p>The library makes use of the Apache Xerces-C XML Parser and Xalan-C XSLT processor. The latter is used for processing XPath and XSLT transforms. The use of Xalan-C is optional, but without it, XPath and XSLT transformations cannot be performed.</p><div class="confluence-information-macro confluence-information-macro-note"><span class="aui-icon aui-icon-small aui-iconfont-warning confluence-information-macro-icon"></span><div class="confluence-information-macro-body"><p>The state of the Xalan-C project is unclear at
this time, and these features should be viewed with caution.</p></div></div><p>In addition, the library currently uses OpenSSL to provide cryptographic functionality. The cryptographic interface is implemented via a thin wrapper layer, and development versions of implementations for the Windows Cryptographic API and NSS have also been implemented.</p><h3 id="c_index-News">News</h3><p>Version 1.7.3 of the Apache XML Security for C++ library has been released. This is a bug fix release primarily addressing problems with ECDSA signature generation and several reported issues with the Windoes CAPI support.</p><h3 id="c_index-OldNews">Old News</h3><p>See <a shape="rect" href="oldnews.html">here</a> for old news.</p></div>
+<div id="ConfluenceContent"><h1 id="c_index-ApacheXMLSecurityforC++">Apache XML Security for C++</h1><h3 id="c_index-Overview">Overview</h3><p>The Apache XML Security for C++ library is an implementation of the XML Digital Signature and Encryption specifications, along with some additional XKMS code. It is designed to be easily ported to new platforms, and is generally tested on Windows, Linux, OS X, and Solaris. Other platforms with autoconf support may also work.</p><p>The library makes use of the Apache Xerces-C XML Parser and Xalan-C XSLT processor. The latter is used for processing XPath and XSLT transforms. The use of Xalan-C is optional, but without it, XPath and XSLT transformations cannot be performed.</p><div class="confluence-information-macro confluence-information-macro-note"><span class="aui-icon aui-icon-small aui-iconfont-warning confluence-information-macro-icon"></span><div class="confluence-information-macro-body"><p>The state of the Xalan-C project is unclear at
this time, and these features should be viewed with caution.</p></div></div><p>In addition, the library currently uses OpenSSL to provide cryptographic functionality. The cryptographic interface is implemented via a thin wrapper layer, and development versions of implementations for the Windows Cryptographic API and NSS have also been implemented.</p><h3 id="c_index-News">News</h3><p>Version 2.0.1 of the Apache XML Security for C++ has been released.</p><p>This patch corrects a <a shape="rect" class="external-link" href="https://issues.apache.org/jira/browse/SANTUARIO-491">bug</a> that can cause crashes in upstream applications.</p><p>Version 2.0.0 of the Apache XML Security for C++ has been released.</p><p>Please see the <a shape="rect" class="external-link" href="https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12311231&version=12341551">release notes</a> for basic information on bugs addressed. As a major upgrade, this release includes a range of relative mino
r, but visible, changes to the API that are not explicitly noted there. There are no features of significance added in this version, merely some refactoring and removal of deprecated APIs.</p><h3 id="c_index-OldNews">Old News</h3><p>See <a shape="rect" href="oldnews.html">here</a> for old news.</p></div>
</div>
<!-- Content -->
</td>
Modified: websites/production/santuario/content/download.html
==============================================================================
--- websites/production/santuario/content/download.html (original)
+++ websites/production/santuario/content/download.html Thu Aug 2 23:42:58 2018
@@ -108,7 +108,7 @@ Apache Santuario -- download
<td height="100%">
<!-- Content -->
<div class="wiki-content">
-<div id="ConfluenceContent"><h1 id="download-ObtaintheApacheSantuario™distribution">Obtain the Apache Santuario™ distribution</h1><p>The <strong>Apache Santuario™</strong> project is aimed at providing implementation of the primary security standards for XML. Two libraries are currently available.</p><ul><li>Apache XML Security for Java - This library includes a mature Digital Signature and Encryption implementation. It also includes the standard JSR 105 (Java XML Digital Signature) API. Applications can use the standard JSR 105 API or the Apache Santuario API to create and validate XML Signatures.</li><li>Apache XML Security for C++ - This library includes a mature Digital Signature and Encryption implementation using a proprietary C++ API on top of the Xerces-C XML Parser's DOM API. It includes a pluggable cryptographic layer, but support for alternatives to OpenSSL are less complete and less mature.</li></ul><h3 id="download-Howtodownload">How to download</h3><p
>Use the links below to download a distribution of Apache Santuario from one of our mirrors. It is good practice to verify the integrity of the distribution files. Apache Santuario releases are available under the <a shape="rect" class="external-link" href="http://www.apache.org/licenses/LICENSE-2.0">Apache License, Version 2.0</a> - see the LICENSE.txt and NOTICE.txt files contained in each release artifact.</p><h3 id="download-Currentofficialrelease(closestmirrorsiteselectedautomatically)">Current official release (closest mirror site selected automatically)</h3><ul><li>The current stable Java release is Apache XML Security for Java 2.1.2: <a shape="rect" class="external-link" href="http://www.apache.org/dyn/closer.lua/santuario/java-library/2_1_2/xmlsec-2.1.2-source-release.zip">xmlsec-2.1.2-source-release.zip</a> (<a shape="rect" class="external-link" href="https://www.apache.org/dist/santuario/java-library/2_1_2/xmlsec-2.1.2-source-release.zip.asc">PGP</a>) (<a shape="rect" cla
ss="external-link" href="https://www.apache.org/dist/santuario/java-library/2_1_2/xmlsec-2.1.2-source-release.zip.md5">MD5</a>) (<a shape="rect" class="external-link" href="https://www.apache.org/dist/santuario/java-library/2_1_2/xmlsec-2.1.2-source-release.zip.sha1">SHA1</a>)</li><li>The older stable Java release is Apache XML Security for Java 2.0.10:  <a shape="rect" class="external-link" href="http://www.apache.org/dyn/closer.lua/santuario/java-library/2_0_10/xmlsec-2.0.10-source-release.zip">xmlsec-2.0.10-source-release.zip</a> (<a shape="rect" class="external-link" href="https://www.apache.org/dist/santuario/java-library/2_0_10/xmlsec-2.0.10-source-release.zip.asc">PGP</a>) (<a shape="rect" class="external-link" href="https://www.apache.org/dist/santuario/java-library/2_0_10/xmlsec-2.0.10-source-release.zip.md5">MD5</a>) (<a shape="rect" class="external-link" href="https://www.apache.org/dist/santuario/java-library/2_0_10/xmlsec-2.0.10-source-release.zip.sha1">SHA1</a>)</
li><li>The current C++ release is Apache XML Security for C++ 2.0.0:<br clear="none"><ul><li><a shape="rect" class="external-link" href="http://www.apache.org/dyn/closer.lua/santuario/c-library/xml-security-c-2.0.0.tar.gz">xml-security-c-2.0.0.tar.gz</a> (<a shape="rect" class="external-link" href="https://www.apache.org/dist/santuario/c-library/xml-security-c-2.0.0.tar.gz.asc">PGP</a>) (<a shape="rect" class="external-link" href="https://www.apache.org/dist/santuario/c-library/xml-security-c-2.0.0.tar.gz.sha1">SHA1</a>) (<a shape="rect" class="external-link" href="https://www.apache.org/dist/santuario/c-library/xml-security-c-2.0.0.tar.gz.sha256">SHA256</a>)</li><li><a shape="rect" class="external-link" href="http://www.apache.org/dyn/closer.lua/santuario/c-library/xml-security-c-2.0.0.tar.bz2">xml-security-c-2.0.0.tar.bz2</a> (<a shape="rect" class="external-link" href="https://www.apache.org/dist/santuario/c-library/xml-security-c-2.0.0.tar.bz2.asc">PGP</a>) (<a shape="rect" clas
s="external-link" href="https://www.apache.org/dist/santuario/c-library/xml-security-c-2.0.0.tar.bz2.sha1">SHA1</a>) (<a shape="rect" class="external-link" href="https://www.apache.org/dist/santuario/c-library/xml-security-c-2.0.0.tar.bz2.sha256">SHA256</a>)</li><li><a shape="rect" class="external-link" href="http://www.apache.org/dyn/closer.lua/santuario/c-library/xml-security-c-2.0.0.zip">xml-security-c-2.0.0.zip</a> (<a shape="rect" class="external-link" href="https://www.apache.org/dist/santuario/c-library/xml-security-c-2.0.0.zip.asc">PGP</a>) (<a shape="rect" class="external-link" href="https://www.apache.org/dist/santuario/c-library/xml-security-c-2.0.0.zip.sha1">SHA1</a>) (<a shape="rect" class="external-link" href="https://www.apache.org/dist/santuario/c-library/xml-security-c-2.0.0.zip.sha256">SHA256</a>)</li></ul></li></ul><h3 id="download-Archiveofoldreleases">Archive of old releases</h3><p>Older releases are available in the <a shape="rect" class="external-link" href="h
ttp://archive.apache.org/dist/santuario/">archive</a>.</p><h3 id="download-Verifyreleases">Verify releases</h3><p>It is essential that you verify the integrity of the downloaded files using the PGP signatures. Digest verification ensures the file was not corrupted or tampered with but provides no real verification of authenticity. PGP verification ensures that the file is authentic. In practice, PGP verification is <strong>much</strong> more important and makes checksum verification redundant.</p><h3 id="download-PGPSignature">PGP Signature</h3><p>The PGP signatures can be verified using <a shape="rect" class="external-link" href="http://www.pgpi.org/" rel="nofollow">PGP</a> or <a shape="rect" class="external-link" href="http://www.gnupg.org/" rel="nofollow">GPG</a>. First download the Apache Santuario <a shape="rect" class="external-link" href="https://www.apache.org/dist/santuario/KEYS">KEYS</a> as well as the *.asc signature file for the particular distribution. It is important t
hat you get these files from the ultimate trusted source - the main ASF distribution site, rather than from a mirror. Then verify the signatures using:</p><div class="code panel pdl" style="border-width: 1px;"><div class="codeContent panelContent pdl">
+<div id="ConfluenceContent"><h1 id="download-ObtaintheApacheSantuario™distribution">Obtain the Apache Santuario™ distribution</h1><p>The <strong>Apache Santuario™</strong> project is aimed at providing implementation of the primary security standards for XML. Two libraries are currently available.</p><ul><li>Apache XML Security for Java - This library includes a mature Digital Signature and Encryption implementation. It also includes the standard JSR 105 (Java XML Digital Signature) API. Applications can use the standard JSR 105 API or the Apache Santuario API to create and validate XML Signatures.</li><li>Apache XML Security for C++ - This library includes a mature Digital Signature and Encryption implementation using a proprietary C++ API on top of the Xerces-C XML Parser's DOM API. It includes a pluggable cryptographic layer, but support for alternatives to OpenSSL are less complete and less mature.</li></ul><h3 id="download-Howtodownload">How to download</h3><p
>Use the links below to download a distribution of Apache Santuario from one of our mirrors. It is good practice to verify the integrity of the distribution files. Apache Santuario releases are available under the <a shape="rect" class="external-link" href="http://www.apache.org/licenses/LICENSE-2.0">Apache License, Version 2.0</a> - see the LICENSE.txt and NOTICE.txt files contained in each release artifact.</p><h3 id="download-Currentofficialrelease(closestmirrorsiteselectedautomatically)">Current official release (closest mirror site selected automatically)</h3><ul><li>The current stable Java release is Apache XML Security for Java 2.1.2: <a shape="rect" class="external-link" href="http://www.apache.org/dyn/closer.lua/santuario/java-library/2_1_2/xmlsec-2.1.2-source-release.zip">xmlsec-2.1.2-source-release.zip</a> (<a shape="rect" class="external-link" href="https://www.apache.org/dist/santuario/java-library/2_1_2/xmlsec-2.1.2-source-release.zip.asc">PGP</a>) (<a shape="rect" cla
ss="external-link" href="https://www.apache.org/dist/santuario/java-library/2_1_2/xmlsec-2.1.2-source-release.zip.sha1">SHA1</a>)</li><li>The older stable Java release is Apache XML Security for Java 2.0.10:  <a shape="rect" class="external-link" href="http://www.apache.org/dyn/closer.lua/santuario/java-library/2_0_10/xmlsec-2.0.10-source-release.zip">xmlsec-2.0.10-source-release.zip</a> (<a shape="rect" class="external-link" href="https://www.apache.org/dist/santuario/java-library/2_0_10/xmlsec-2.0.10-source-release.zip.asc">PGP</a>) (<a shape="rect" class="external-link" href="https://www.apache.org/dist/santuario/java-library/2_0_10/xmlsec-2.0.10-source-release.zip.sha1">SHA1</a>)</li><li>The current C++ release is Apache XML Security for C++ 2.0.1:<br clear="none"><ul><li><a shape="rect" class="external-link" href="http://www.apache.org/dyn/closer.lua/santuario/c-library/xml-security-c-2.0.1.tar.gz">xml-security-c-2.0.1.tar.gz</a> (<a shape="rect" class="external-link" href
="https://www.apache.org/dist/santuario/c-library/xml-security-c-2.0.1.tar.gz.asc">PGP</a>) (<a shape="rect" class="external-link" href="https://www.apache.org/dist/santuario/c-library/xml-security-c-2.0.1.tar.gz.sha1">SHA1</a>) (<a shape="rect" class="external-link" href="https://www.apache.org/dist/santuario/c-library/xml-security-c-2.0.1.tar.gz.sha256">SHA256</a>)</li><li><a shape="rect" class="external-link" href="http://www.apache.org/dyn/closer.lua/santuario/c-library/xml-security-c-2.0.1.tar.bz2">xml-security-c-2.0.1.tar.bz2</a> (<a shape="rect" class="external-link" href="https://www.apache.org/dist/santuario/c-library/xml-security-c-2.0.1.tar.bz2.asc">PGP</a>) (<a shape="rect" class="external-link" href="https://www.apache.org/dist/santuario/c-library/xml-security-c-2.0.1.tar.bz2.sha1">SHA1</a>) (<a shape="rect" class="external-link" href="https://www.apache.org/dist/santuario/c-library/xml-security-c-2.0.1.tar.bz2.sha256">SHA256</a>)</li><li><a shape="rect" class="external
-link" href="http://www.apache.org/dyn/closer.lua/santuario/c-library/xml-security-c-2.0.1.zip">xml-security-c-2.0.1.zip</a> (<a shape="rect" class="external-link" href="https://www.apache.org/dist/santuario/c-library/xml-security-c-2.0.1.zip.asc">PGP</a>) (<a shape="rect" class="external-link" href="https://www.apache.org/dist/santuario/c-library/xml-security-c-2.0.1.zip.sha1">SHA1</a>) (<a shape="rect" class="external-link" href="https://www.apache.org/dist/santuario/c-library/xml-security-c-2.0.1.zip.sha256">SHA256</a>)</li></ul></li></ul><h3 id="download-Archiveofoldreleases">Archive of old releases</h3><p>Older releases are available in the <a shape="rect" class="external-link" href="http://archive.apache.org/dist/santuario/">archive</a>.</p><h3 id="download-Verifyreleases">Verify releases</h3><p>It is essential that you verify the integrity of the downloaded files using the PGP signatures. Digest verification ensures the file was not corrupted or tampered with but provides no
real verification of authenticity. PGP verification ensures that the file is authentic. In practice, PGP verification is <strong>much</strong> more important and makes checksum verification redundant.</p><h3 id="download-PGPSignature">PGP Signature</h3><p>The PGP signatures can be verified using <a shape="rect" class="external-link" href="http://www.pgpi.org/" rel="nofollow">PGP</a> or <a shape="rect" class="external-link" href="http://www.gnupg.org/" rel="nofollow">GPG</a>. First download the Apache Santuario <a shape="rect" class="external-link" href="https://www.apache.org/dist/santuario/KEYS">KEYS</a> as well as the *.asc signature file for the particular distribution. It is important that you get these files from the ultimate trusted source - the main ASF distribution site, rather than from a mirror. Then verify the signatures using:</p><div class="code panel pdl" style="border-width: 1px;"><div class="codeContent panelContent pdl">
<pre class="brush: java; gutter: false; theme: Default">% pgpk -a KEYS
% pgpv xml-security-bin-1_4_4.zip.asc
or
@@ -118,9 +118,9 @@ Apache Santuario -- download
% gpg --import KEYS
% gpg --verify xml-security-bin-1_4_4.zip.asc
</pre>
-</div></div><h3 id="download-Checksums">Checksums</h3><p>To verify the MD5 or SHA checksum on the files, you need to use a program called md5 or md5sum (or sha1, etc.), which is included in many unix distributions. It is also available as part of <a shape="rect" class="external-link" href="http://www.gnu.org/software/textutils/textutils.html" rel="nofollow">GNU Textutils</a>. Windows users can get binary md5 programs from <a shape="rect" class="external-link" href="http://www.fourmilab.ch/md5/" rel="nofollow">here</a>, <a shape="rect" class="external-link" href="http://www.pc-tools.net/win32/freeware/console/" rel="nofollow">here</a>, or <a shape="rect" class="external-link" href="http://www.slavasoft.com/fsum/" rel="nofollow">here</a> or an openssl client from <a shape="rect" class="external-link" href="http://www.slproweb.com/products/Win32OpenSSL.html" rel="nofollow">here</a>.</p><div class="code panel pdl" style="border-width: 1px;"><div class="codeContent panelContent pdl">
-<pre class="brush: java; gutter: false; theme: Default">% md5sum xml-security-X.Y.tar.gz
- ... output should match the string in xml-security-X.Y.tar.gz.md5
+</div></div><h3 id="download-Checksums">Checksums</h3><p>To verify the SHA checksum on the files, you need to use a program called sha1sum (or sha256sum, etc.), which is included in many unix distributions. It is also available as part of <a shape="rect" class="external-link" href="http://www.gnu.org/software/textutils/textutils.html" rel="nofollow">GNU Textutils</a>. Windows users can get binary digest programs from <a shape="rect" class="external-link" href="http://www.slavasoft.com/fsum/" rel="nofollow">here</a> or an openssl client from <a shape="rect" class="external-link" href="http://www.slproweb.com/products/Win32OpenSSL.html" rel="nofollow">here</a>.</p><div class="code panel pdl" style="border-width: 1px;"><div class="codeContent panelContent pdl">
+<pre class="brush: java; gutter: false; theme: Default">% sha1sum xml-security-X.Y.tar.gz
+ ... output should match the string in xml-security-X.Y.tar.gz.sha1
</pre>
</div></div><p>We strongly recommend you verify your downloads with PGP.</p></div>
</div>
Modified: websites/production/santuario/content/index.html
==============================================================================
--- websites/production/santuario/content/index.html (original)
+++ websites/production/santuario/content/index.html Thu Aug 2 23:42:58 2018
@@ -99,7 +99,7 @@ Apache Santuario -- Index
<td height="100%">
<!-- Content -->
<div class="wiki-content">
-<div id="ConfluenceContent"><h1 id="Index-WelcometoApacheSantuario™">Welcome to Apache Santuario™</h1><h3 id="Index-TheProject">The Project</h3><p>The <strong>Apache Santuario™</strong> project is aimed at providing implementation of the primary security standards for XML:</p><ul><li>XML-Signature Syntax and Processing</li><li>XML Encryption Syntax and Processing.</li></ul><p>Two libraries are currently available.</p><ul><li>Apache XML Security for Java: This library includes the standard JSR-105 (Java XML Digital Signature) API,  a mature DOM-based implementation of both XML Signature and XML Encryption, as well as a more recent StAX-based (streaming) XML Signature and XML Encryption implementation.</li><li>Apache XML Security for C++: This library includes a mature Digital Signature and Encryption implementation using a proprietary C++ API on top of the Xerces-C XML Parser's DOM API. It includes a pluggable cryptographic layer, but support for alternatives t
o OpenSSL are less complete and less mature.</li></ul><h3 id="Index-News">News</h3><h5 id="Index-June2018">June 2018</h5><p>Version 2.1.2 of the Apache XML Security for Java library has been released.</p><p>Please see the <span class="confluence-link"><a shape="rect" href="javareleasenotes.html">release notes</a></span> for more information.</p><p>Version 2.0.0 of the Apache XML Security for C++ has been released.</p><p>Please see the <a shape="rect" class="external-link" href="https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12311231&version=12341551">release notes</a> for basic information on bugs addressed. As a major upgrade, this release includes a range of relative minor, but visible, changes to the API that are not explicitly noted there. There are no features of significance added in this version, merely some refactoring and removal of deprecated APIs.</p><h5 id="Index-January2018">January 2018</h5><p>Versions 2.1.1 and 2.0.10 of the Apache XML Security f
or Java library have been released.</p><p>Please see the <span class="confluence-link"><a shape="rect" href="javareleasenotes.html">release notes</a></span> for more information.</p><h5 id="Index-March2015">March 2015</h5><p>Version 1.7.3 of the Apache XML Security for C++ library has been released, fixing a number of bugs, including a major issue involving ECDSA signature generation.</p><h3 id="Index-OlderNews">Older News</h3><p>See <a shape="rect" href="oldnews.html">here</a> for old news.</p><p> </p></div>
+<div id="ConfluenceContent"><h1 id="Index-WelcometoApacheSantuario™">Welcome to Apache Santuario™</h1><h3 id="Index-TheProject">The Project</h3><p>The <strong>Apache Santuario™</strong> project is aimed at providing implementation of the primary security standards for XML:</p><ul><li>XML-Signature Syntax and Processing</li><li>XML Encryption Syntax and Processing.</li></ul><p>Two libraries are currently available.</p><ul><li>Apache XML Security for Java: This library includes the standard JSR-105 (Java XML Digital Signature) API,  a mature DOM-based implementation of both XML Signature and XML Encryption, as well as a more recent StAX-based (streaming) XML Signature and XML Encryption implementation.</li><li>Apache XML Security for C++: This library includes a mature Digital Signature and Encryption implementation using a proprietary C++ API on top of the Xerces-C XML Parser's DOM API. It includes a pluggable cryptographic layer, but support for alternatives t
o OpenSSL are less complete and less mature.</li></ul><h3 id="Index-News">News</h3><h5 id="Index-August2018">August 2018</h5><p>Version 2.0.1 of the Apache XML Security for C++ has been released.</p><p>This patch corrects a <a shape="rect" class="external-link" href="https://issues.apache.org/jira/browse/SANTUARIO-491">bug</a> that can cause crashes in upstream applications.</p><h5 id="Index-June2018">June 2018</h5><p>Version 2.1.2 of the Apache XML Security for Java library has been released.</p><p>Please see the <span class="confluence-link"><a shape="rect" href="javareleasenotes.html">release notes</a></span> for more information.</p><p>Version 2.0.0 of the Apache XML Security for C++ has been released.</p><p>Please see the <a shape="rect" class="external-link" href="https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12311231&version=12341551">release notes</a> for basic information on bugs addressed. As a major upgrade, this release includes a range of relative
minor, but visible, changes to the API that are not explicitly noted there. There are no features of significance added in this version, merely some refactoring and removal of deprecated APIs.</p><h5 id="Index-January2018">January 2018</h5><p>Versions 2.1.1 and 2.0.10 of the Apache XML Security for Java library have been released.</p><p>Please see the <span class="confluence-link"><a shape="rect" href="javareleasenotes.html">release notes</a></span> for more information.</p><h5 id="Index-March2015">March 2015</h5><p>Version 1.7.3 of the Apache XML Security for C++ library has been released, fixing a number of bugs, including a major issue involving ECDSA signature generation.</p><h3 id="Index-OlderNews">Older News</h3><p>See <a shape="rect" href="oldnews.html">here</a> for old news.</p><p> </p></div>
</div>
<!-- Content -->
</td>
Modified: websites/production/santuario/content/oldnews.html
==============================================================================
--- websites/production/santuario/content/oldnews.html (original)
+++ websites/production/santuario/content/oldnews.html Thu Aug 2 23:42:58 2018
@@ -99,7 +99,7 @@ Apache Santuario -- old_news
<td height="100%">
<!-- Content -->
<div class="wiki-content">
-<div id="ConfluenceContent"><h1 id="old_news-OldNews">Old News</h1><h5 id="old_news-ApacheXMLSecurityforJava2.1.1/2.0.10">Apache XML Security for Java 2.1.1/2.0.10</h5><p>Versions 2.1.1 and 2.0.10 of the Apache XML Security for Java library have been released.</p><p>Please see the <span class="confluence-link"><a shape="rect" href="https://cwiki.apache.org/confluence/display/SANTUARIO/java_release_notes">release notes</a></span> for more information.</p><h5 id="old_news-ApacheXMLSecurityforJava2.1.0/2.0.9">Apache XML Security for Java 2.1.0/2.0.9</h5><p>Versions 2.1.0 and 2.0.9 of the Apache XML Security for Java library have been released.</p><p>Please see the <span class="confluence-link"><a shape="rect" href="https://cwiki.apache.org/confluence/display/SANTUARIO/java_release_notes">release notes</a></span> for more information.</p><h3 id="old_news-ApacheXMLSecurityforJava2.0.5">Apache XML Security for Java 2.0.5</h3><p>Version 2.0.5 of the Apache XML Security for Java library has
been released.</p><p>Please see the <span class="confluence-link"><a shape="rect" href="https://cwiki.apache.org/confluence/display/SANTUARIO/java_release_notes">release notes</a></span> for more information.</p><h3 id="old_news-ApacheXMLSecurityforJava2.0.4">Apache XML Security for Java 2.0.4</h3><p>Versions 2.0.4 of the Apache XML Security for Java library has been released.</p><p>Please see the <span class="confluence-link"><a shape="rect" href="javareleasenotes.html">release notes</a></span> for more information.</p><h3 id="old_news-ApacheXMLSecurityforJava2.0.3/1.5.8">Apache XML Security for Java 2.0.3/1.5.8</h3><p>Versions 2.0.3 and 1.5.8 of the Apache XML Security for Java library have been released. Security advisory <a shape="rect" href="secadv.html">CVE-2014-8152</a> has been issued for versions 2.0.0, 2.0.1 and 2.0.2 of the library.</p><p>Please see the <span class="confluence-link"><a shape="rect" href="javareleasenotes.html">release notes</a></span> for more informatio
n.</p><h3 id="old_news-ApacheXMLSecurityforC++1.7.1">Apache XML Security for C++ 1.7.1</h3><p>Security advisory <a shape="rect" href="secadv.html">CVE-2013-2210</a> has been issued, affecting Apache XML-Security for C++ version 1.7.1. Version 1.7.2 of the Apache XML Security for C++ library has been released, addressing this issue.</p><p>Security advisory <a shape="rect" href="secadv.html">CVE-2013-2172</a> has been issued for the Apache XML Security for Java project. Versions 1.4.8 and 1.5.5 have been released, fixing this issue.</p><p>Security advisories <a shape="rect" href="secadv.html">CVE-2013-2153</a>, <a shape="rect" href="secadv.html">CVE-2013-2154</a>, <a shape="rect" href="secadv.html">CVE-2013-2155</a>, and <a shape="rect" href="secadv.html">CVE-2013-2156</a>, affecting Apache XML-Security for C++ versions prior to 1.7.1, have been issued.</p><p>Version 1.7.1 of the Apache XML Security for C++ library has been released, addressing these issues.</p><h3 id="old_news-Apache
XMLSecurityforJava2.0.2">Apache XML Security for Java 2.0.2</h3><p>Versions 2.0.2 of the Apache XML Security for Java library has been released.</p><p>Please see the <span class="confluence-link"><a shape="rect" href="javareleasenotes.html">release notes</a></span> for more information.</p><h3 id="old_news-ApacheXMLSecurityforJava2.0.1and1.5.7">Apache XML Security for Java 2.0.1 and 1.5.7</h3><p>Versions 2.0.1 and 1.5.7 of the Apache XML Security for Java library has been released.</p><p>Please see the <span class="confluence-link"><a shape="rect" href="javareleasenotes.html">release notes</a></span> for more information.</p><h3 id="old_news-ApacheXMLSecurityforJava2.0.0">Apache XML Security for Java 2.0.0</h3><p>Version 2.0.0 of the Apache XML Security for Java library has been released.</p><p>Please see the <span class="confluence-link"><a shape="rect" href="java200releasenotes.html">release notes</a></span> for more information.</p><h3 id="old_news-ApacheXMLSecurityforJava1.5.6">
Apache XML Security for Java 1.5.6</h3><p>Version 1.5.6 of the Apache XML Security for Java library has been released.</p><p>Please see the <a shape="rect" href="java156releasenotes.html">release notes</a> for more information.</p><p>This release fixes a new security advisory <a shape="rect" href="secadv.html">CVE-2013-4517</a>.</p><h3 id="old_news-ApacheXMLSecurityforJava1.5.5and1.4.8">Apache XML Security for Java 1.5.5 and 1.4.8</h3><p>Security advisory <a shape="rect" href="https://cwiki.apache.org/confluence/display/SANTUARIO/secadv">CVE-2013-2172</a> has been issued for the Apache XML Security for Java project. Versions 1.4.8 and 1.5.5 have been released, fixing this issue.</p><h3 id="old_news-ApacheXMLSecurityforJava1.4.7">Apache XML Security for Java 1.4.7</h3><p>The Apache Santuario team are pleased to announce the release of version 1.4.7 of the Apache XML Security for Java library. This release fixes a problem with a missing KeyInfo Element when multiple elements are encry
pted, as well as a number of other issues.</p><p>Please see the <a shape="rect" href="java147releasenotes.html">release notes</a> for more information.</p><h3 id="old_news-ApacheXMLSecurityforJava1.5.4">Apache XML Security for Java 1.5.4</h3><p>Version 1.5.4 of the Apache XML Security for Java library has been released.</p><p>Please see the <a shape="rect" href="java154releasenotes.html">release notes</a> for more information.</p><h3 id="old_news-ApacheXMLSecurityforC++1.7.0">Apache XML Security for C++ 1.7.0</h3><p>The Apache Santuario team are pleased to announce the release of version 1.7.0 of the Apache XML Security for C++ library. This release provides a few bug fixes and a partial implementation of XML Encryption 1.1 features, including AES-GCM encryption and some support for newer RSA-OAEP variants.</p><h3 id="old_news-ApacheXMLSecurityforJava1.5.3">Apache XML Security for Java 1.5.3</h3><p>Version 1.5.3 of the Apache XML Security for Java library has been released. This rel
ease features support for new XML Signature 1.1 KeyInfo extensions. It also fixes a number of bugs including a problem when message sizes are greater than 512 MB.</p><p>Please see the <a shape="rect" href="java153releasenotes.html">release notes</a> for more information.</p><h3 id="old_news-ApacheXMLSecurityforJava1.5.2">Apache XML Security for Java 1.5.2</h3><p>Version 1.5.2 of the Apache XML Security for Java library has been released. The main feature of this release is that the default canonicalization algorithm for encryption has changed from inclusive with comments to a new canonicalization algorithm that preserves the physical representation of the element being encrypted. This change fixes a problem where an element might be decrypted to the wrong namespace.</p><p>Please see the <a shape="rect" href="java152releasenotes.html">release notes</a> for more information.</p><h3 id="old_news-ApacheXMLSecurityforC++1.6.1">Apache XML Security for C++ 1.6.1</h3><p>The Apache Santuario
team are pleased to announce the release of version 1.6.1 of the Apache XML Security for C++ library. This release provides bug fixes and addresses <a shape="rect" href="secadv.html">CVE-2011-2516</a>.</p><h3 id="old_news-ApacheXMLSecurityforJava1.5.1">Apache XML Security for Java 1.5.1</h3><p>Version 1.5.1 of the Apache XML Security for Java library has been released. This release fixes two important bugs - a bug in XMLSignatureInput when using a BufferedInputStream, as well as a bug which caused 1.5.0 to continue to require Xalan. It also contains some performance improvements for encryption and decryption.</p><p>Please see the <a shape="rect" href="java151releasenotes.html">release notes</a> for more information.</p><h3 id="old_news-ApacheXMLSecurityforJava1.5.0">Apache XML Security for Java 1.5.0</h3><p>Version 1.5.0 of the Apache XML Security for Java library has been released. This is a major new release and is not binary compatible with the 1.4.x releases.</p><p>Please see t
he <a shape="rect" href="java150releasenotes.html">release notes</a> for more information.</p><h3 id="old_news-ApacheXMLSecurityforJava1.4.6">Apache XML Security for Java 1.4.6</h3><p>The Apache Santuario team are pleased to announce the release of version 1.4.6 of the Apache XML Security for Java library. This release fixes a thread safety issue with XML Signature, a bug fix for the Canonical XML 1.1 algorithm, as well as a number of other bug fixes.</p><p>Please see the <a shape="rect" href="java146releasenotes.html">release notes</a> for more information.</p><h3 id="old_news-ApacheXMLSecurityforJava1.4.5">Apache XML Security for Java 1.4.5</h3><p>The Apache Santuario team are pleased to announce the release of version 1.4.5 of the Apache XML Security for Java library. This release fixes a thread safety issue in the ResourceResolver, and a regression in signature generation for the Canonical XML 1.1 algorithm, as well as a number of other bug fixes.</p><p>Please see the <a shape="
rect" href="java145releasenotes.html">release notes</a> for more information.</p><h3 id="old_news-ApacheXMLSecurityforC++1.6.0">Apache XML Security for C++ 1.6.0</h3><p>The Apache Santuario team are pleased to announce the release of version 1.6.0 of the Apache XML Security for C++ library. This release provides many bug fixes and a partial implementation of XML Signature 1.1 features, including ECDSA signatures.</p><h3 id="old_news-ApacheXMLSecurityforJava1.4.4">Apache XML Security for Java 1.4.4</h3><p>The Apache Santuario team are pleased to announce the release of version 1.4.4 of the Apache XML Security for Java library. This release contains some enhancements to the resolver API's. It also fixes some longstanding issues with interned Strings, as well as a number of bug fixes.</p><p>Please see the <a shape="rect" href="java144releasenotes.html">release notes</a> for more information.</p><h3 id="old_news-ApacheXMLSecurityforJava1.4.3">Apache XML Security for Java 1.4.3</h3><p>Th
e Apache Santuario team are pleased to announce the release of version 1.4.3 of the XML Security Java library. This release provides many bug fixes and a fix for the recently announced HMAC vulnerability in the XML Signature specification. You should upgrade to this release as soon as possible.</p><p>Please see the <a shape="rect" href="java143releasenotes.html">changelog</a> for more information.</p><h3 id="old_news-ApacheXMLSecurityforC++1.5.1">Apache XML Security for C++ 1.5.1</h3><p>The Apache Santuario team are pleased to announce the release of version 1.5.1 of the XML Security C++ library. This release provides some bug fixes and a fix for the recently announced HMAC vulnerability in the XML Signature specification.</p><p>Please see the <a shape="rect" href="c151releasenotes.html">changelog</a> for more information.</p><h3 id="old_news-ApacheXMLSecurityforC++1.5.0">Apache XML Security for C++ 1.5.0</h3><p>Version 1.5.0 of the XML Security C++ library has been released. This r
elease provides more bug fixes, partial support for Inclusive Canonicalization 1.1, and support for the Xerces 3.x official release and 32/64-bit portability APIs.</p><p>Please see the <a shape="rect" href="c150releasenotes.html">changelog</a> for more information.</p><h3 id="old_news-ApacheXMLSecurityforJava1.4.2">Apache XML Security for Java 1.4.2</h3><p>Version 1.4.2 of the XML Security Java library has been released. This is mainly a bugfix release but also contains a few new enhancements including support for XML Canonicalization 1.1.</p><p>Please see the <a shape="rect" href="java142releasenotes.html">changelog</a> for more information.</p><h3 id="old_news-ApacheXMLSecurityforJava1.4.1">Apache XML Security for Java 1.4.1</h3><p>Version 1.4.1 of the XML Security Java library has been released. This is a bugfix release that contains a major bugfix to the canonicalization engine introduced in the 1.4 release. It is recommended that 1.4 users upgrade to the new version as signatur
es containing non ascii characters created by this library are not according to the standard, and will be only validated by 1.4 library.</p><p>Please see the <a shape="rect" href="java141releasenotes.html">changelog</a> for more information.</p><h3 id="old_news-ApacheXMLSecurityforC++1.4.0">Apache XML Security for C++ 1.4.0</h3><p>The Apache Santuario team are proud to announce the release of version 1.4.0 of the XML Security C++ library. This release provides more bug fixes, improved automake and RPM packaging, and better error reporting.</p><p>This version also provides initial support for Xerces 3.0. If you are building for the 3.0 library under Windows, you will need to change the Xerces library (in link includes) to xerces_3?.lib.</p><p>Please see the <a shape="rect" href="c140releasenotes.html">changelog</a> for more information.</p><h3 id="old_news-ApacheXMLSecurityforC++1.3.1">Apache XML Security for C++ 1.3.1</h3><p>Version 1.3.1 of the XML Security C++ library has been rel
eased. This release contains some minor bug fixes and initial updates for Xerces 3.0. It also provides a new automake based build on *NIX. See the <a shape="rect" href="c131releasenotes.html">changelog</a> for more information.</p><h3 id="old_news-ApacheXMLSecurityforJava1.4.0">Apache XML Security for Java 1.4.0</h3><p>Version 1.4 of the XML Security Java library has been released. The main changes for this version are:</p><ul><li>Implementation of the standard API JSR105</li><li>Rewritten c14n that increase performance for signature with node-set transformations.</li><li>Memory footprint reduction and several bugfixes</li></ul><p>Refer to the <a shape="rect" href="java140releasenotes.html">changelog</a> for more information.</p><h3 id="old_news-ApacheXMLSecurityforC++1.3.0">Apache XML Security for C++ 1.3.0</h3><p>Version 1.3 of the XML Security C++ library has been released. This release features performance improvements and a complete message set for XKMS. See the <a shape="rect"
href="c130releasenotes.html">changelog</a> for more information.</p><h3 id="old_news-ApacheXMLSecurityforJava1.3.0">Apache XML Security for Java 1.3.0</h3><p>Version 1.3 of the XML Security Java library has been released. This version provides :</p><ul><li>Better speed & memory utilization.</li><li>Bug fixes.</li></ul><p>See the <a shape="rect" href="java130releasenotes.html">changelog</a> for more information.</p><h3 id="old_news-ApacheXMLSecurityforC++1.2.1">Apache XML Security for C++ 1.2.1</h3><p>Version 1.2.1 of the XML Security C++ library has been released. This minor release fixes versioning problems in the Windows project files. See the <a shape="rect" href="c121releasenotes.html">changelog</a> for more information.</p><h3 id="old_news-ApacheXMLSecurityforC++1.2.0">Apache XML Security for C++ 1.2.0</h3><p>Version 1.2 of the XML Security C++ library has been released. This version includes a number of bug fixes, together with a beta release of code to process and genera
te XKMS messages. See the <a shape="rect" href="c120releasenotes.html">changelog</a> for more information.</p><h3 id="old_news-ApacheXMLSecurityforJava1.2.1">Apache XML Security for Java 1.2.1</h3><p>Version 1.2.1 of the XML Security Java library has been released. This is a bugfix version, for more detail information see the <a shape="rect" href="java121releasenotes.html">changelog</a>.</p><h3 id="old_news-ApacheXMLSecurityforJava1.2.0">Apache XML Security for Java 1.2.0</h3><p>Version 1.2 of the XML Security Java library has been released. This version provides :</p><ul><li>Better speed & memory utilization.</li><li>Easier JCE integration.</li></ul><h3 id="old_news-ApacheXMLSecurityforJava1.1">Apache XML Security for Java 1.1</h3><p>Version 1.1 of the XML Security Java library has been released. This version provides :</p><ul><li>Beta implementation of XML Encryption</li><li>Bug fixes to Signature implementation</li></ul><h3 id="old_news-ApacheXMLSecurityforC++1.1">Apache XML
Security for C++ 1.1</h3><p>Version 1.1 of the XML Security C++ library has been released. Supporting Xerces 2.5, 2.4 and 2.3 together with Xalan 1.6 and 1.7, this version provides :</p><ul><li>Beta implementation of XML Encryption</li><li>Improved support for Windows Crypto API</li><li>Bug fixes to Signature implementation</li></ul><h3 id="old_news-ApacheXMLSecurityforC++1.0">Apache XML Security for C++ 1.0</h3><p>Version 1.00 of the XML Security C++ library is now released. This is the first stable release of the library. Functionality is still fairly basic, but all mandatory parts of the the DSIG standard are implemented.</p><p>This version supports Xerces 2.2 and 2.3 and Xalan 1.6.</p><h3 id="old_news-ApacheXMLSecurityforC++Beta0.2">Apache XML Security for C++ Beta 0.2</h3><p>The Beta 0.20 of the XML Security C++ library has now been released. Features:</p><ul><li>Ability to use the Windows Crypto API as a crypto provider</li><li>Several minor bug fixes in transforms and UNIX bu
ild process</li></ul><h3 id="old_news-ApacheXMLSecurityforJava2.0.1and1.5.7.1">Apache XML Security for Java 2.0.1 and 1.5.7</h3></div>
+<div id="ConfluenceContent"><h1 id="old_news-OldNews">Old News</h1><h3 id="old_news-ApacheXMLSecurityforJava2.1.1/2.0.10">Apache XML Security for Java 2.1.1/2.0.10</h3><p>Versions 2.1.1 and 2.0.10 of the Apache XML Security for Java library have been released.</p><p>Please see the <span class="confluence-link"><a shape="rect" href="https://cwiki.apache.org/confluence/display/SANTUARIO/java_release_notes">release notes</a></span> for more information.</p><h3 id="old_news-ApacheXMLSecurityforJava2.1.0/2.0.9">Apache XML Security for Java 2.1.0/2.0.9</h3><p>Versions 2.1.0 and 2.0.9 of the Apache XML Security for Java library have been released.</p><p>Please see the <span class="confluence-link"><a shape="rect" href="https://cwiki.apache.org/confluence/display/SANTUARIO/java_release_notes">release notes</a></span> for more information.</p><h3 id="old_news-ApacheXMLSecurityforJava2.0.5">Apache XML Security for Java 2.0.5</h3><p>Version 2.0.5 of the Apache XML Security for Java library has
been released.</p><p>Please see the <span class="confluence-link"><a shape="rect" href="https://cwiki.apache.org/confluence/display/SANTUARIO/java_release_notes">release notes</a></span> for more information.</p><h3 id="old_news-ApacheXMLSecurityforJava2.0.4">Apache XML Security for Java 2.0.4</h3><p>Versions 2.0.4 of the Apache XML Security for Java library has been released.</p><p>Please see the <span class="confluence-link"><a shape="rect" href="javareleasenotes.html">release notes</a></span> for more information.</p><h3 id="old_news-ApacheXMLSecurityforJava2.0.3/1.5.8">Apache XML Security for Java 2.0.3/1.5.8</h3><p>Versions 2.0.3 and 1.5.8 of the Apache XML Security for Java library have been released. Security advisory <a shape="rect" href="secadv.html">CVE-2014-8152</a> has been issued for versions 2.0.0, 2.0.1 and 2.0.2 of the library.</p><p>Please see the <span class="confluence-link"><a shape="rect" href="javareleasenotes.html">release notes</a></span> for more informatio
n.</p><h3 id="old_news-ApacheXMLSecurityforC++1.7.1">Apache XML Security for C++ 1.7.1</h3><p>Security advisory <a shape="rect" href="secadv.html">CVE-2013-2210</a> has been issued, affecting Apache XML-Security for C++ version 1.7.1. Version 1.7.2 of the Apache XML Security for C++ library has been released, addressing this issue.</p><p>Security advisory <a shape="rect" href="secadv.html">CVE-2013-2172</a> has been issued for the Apache XML Security for Java project. Versions 1.4.8 and 1.5.5 have been released, fixing this issue.</p><p>Security advisories <a shape="rect" href="secadv.html">CVE-2013-2153</a>, <a shape="rect" href="secadv.html">CVE-2013-2154</a>, <a shape="rect" href="secadv.html">CVE-2013-2155</a>, and <a shape="rect" href="secadv.html">CVE-2013-2156</a>, affecting Apache XML-Security for C++ versions prior to 1.7.1, have been issued.</p><p>Version 1.7.1 of the Apache XML Security for C++ library has been released, addressing these issues.</p><h3 id="old_news-Apache
XMLSecurityforJava2.0.2">Apache XML Security for Java 2.0.2</h3><p>Versions 2.0.2 of the Apache XML Security for Java library has been released.</p><p>Please see the <span class="confluence-link"><a shape="rect" href="javareleasenotes.html">release notes</a></span> for more information.</p><h3 id="old_news-ApacheXMLSecurityforJava2.0.1and1.5.7">Apache XML Security for Java 2.0.1 and 1.5.7</h3><p>Versions 2.0.1 and 1.5.7 of the Apache XML Security for Java library has been released.</p><p>Please see the <span class="confluence-link"><a shape="rect" href="javareleasenotes.html">release notes</a></span> for more information.</p><h3 id="old_news-ApacheXMLSecurityforJava2.0.0">Apache XML Security for Java 2.0.0</h3><p>Version 2.0.0 of the Apache XML Security for Java library has been released.</p><p>Please see the <span class="confluence-link"><a shape="rect" href="java200releasenotes.html">release notes</a></span> for more information.</p><h3 id="old_news-ApacheXMLSecurityforJava1.5.6">
Apache XML Security for Java 1.5.6</h3><p>Version 1.5.6 of the Apache XML Security for Java library has been released.</p><p>Please see the <a shape="rect" href="java156releasenotes.html">release notes</a> for more information.</p><p>This release fixes a new security advisory <a shape="rect" href="secadv.html">CVE-2013-4517</a>.</p><h3 id="old_news-ApacheXMLSecurityforJava1.5.5and1.4.8">Apache XML Security for Java 1.5.5 and 1.4.8</h3><p>Security advisory <a shape="rect" href="https://cwiki.apache.org/confluence/display/SANTUARIO/secadv">CVE-2013-2172</a> has been issued for the Apache XML Security for Java project. Versions 1.4.8 and 1.5.5 have been released, fixing this issue.</p><h3 id="old_news-ApacheXMLSecurityforJava1.4.7">Apache XML Security for Java 1.4.7</h3><p>The Apache Santuario team are pleased to announce the release of version 1.4.7 of the Apache XML Security for Java library. This release fixes a problem with a missing KeyInfo Element when multiple elements are encry
pted, as well as a number of other issues.</p><p>Please see the <a shape="rect" href="java147releasenotes.html">release notes</a> for more information.</p><h3 id="old_news-ApacheXMLSecurityforJava1.5.4">Apache XML Security for Java 1.5.4</h3><p>Version 1.5.4 of the Apache XML Security for Java library has been released.</p><p>Please see the <a shape="rect" href="java154releasenotes.html">release notes</a> for more information.</p><h3 id="old_news-ApacheXMLSecurityforC++1.7.0">Apache XML Security for C++ 1.7.0</h3><p>The Apache Santuario team are pleased to announce the release of version 1.7.0 of the Apache XML Security for C++ library. This release provides a few bug fixes and a partial implementation of XML Encryption 1.1 features, including AES-GCM encryption and some support for newer RSA-OAEP variants.</p><h3 id="old_news-ApacheXMLSecurityforJava1.5.3">Apache XML Security for Java 1.5.3</h3><p>Version 1.5.3 of the Apache XML Security for Java library has been released. This rel
ease features support for new XML Signature 1.1 KeyInfo extensions. It also fixes a number of bugs including a problem when message sizes are greater than 512 MB.</p><p>Please see the <a shape="rect" href="java153releasenotes.html">release notes</a> for more information.</p><h3 id="old_news-ApacheXMLSecurityforJava1.5.2">Apache XML Security for Java 1.5.2</h3><p>Version 1.5.2 of the Apache XML Security for Java library has been released. The main feature of this release is that the default canonicalization algorithm for encryption has changed from inclusive with comments to a new canonicalization algorithm that preserves the physical representation of the element being encrypted. This change fixes a problem where an element might be decrypted to the wrong namespace.</p><p>Please see the <a shape="rect" href="java152releasenotes.html">release notes</a> for more information.</p><h3 id="old_news-ApacheXMLSecurityforC++1.6.1">Apache XML Security for C++ 1.6.1</h3><p>The Apache Santuario
team are pleased to announce the release of version 1.6.1 of the Apache XML Security for C++ library. This release provides bug fixes and addresses <a shape="rect" href="secadv.html">CVE-2011-2516</a>.</p><h3 id="old_news-ApacheXMLSecurityforJava1.5.1">Apache XML Security for Java 1.5.1</h3><p>Version 1.5.1 of the Apache XML Security for Java library has been released. This release fixes two important bugs - a bug in XMLSignatureInput when using a BufferedInputStream, as well as a bug which caused 1.5.0 to continue to require Xalan. It also contains some performance improvements for encryption and decryption.</p><p>Please see the <a shape="rect" href="java151releasenotes.html">release notes</a> for more information.</p><h3 id="old_news-ApacheXMLSecurityforJava1.5.0">Apache XML Security for Java 1.5.0</h3><p>Version 1.5.0 of the Apache XML Security for Java library has been released. This is a major new release and is not binary compatible with the 1.4.x releases.</p><p>Please see t
he <a shape="rect" href="java150releasenotes.html">release notes</a> for more information.</p><h3 id="old_news-ApacheXMLSecurityforJava1.4.6">Apache XML Security for Java 1.4.6</h3><p>The Apache Santuario team are pleased to announce the release of version 1.4.6 of the Apache XML Security for Java library. This release fixes a thread safety issue with XML Signature, a bug fix for the Canonical XML 1.1 algorithm, as well as a number of other bug fixes.</p><p>Please see the <a shape="rect" href="java146releasenotes.html">release notes</a> for more information.</p><h3 id="old_news-ApacheXMLSecurityforJava1.4.5">Apache XML Security for Java 1.4.5</h3><p>The Apache Santuario team are pleased to announce the release of version 1.4.5 of the Apache XML Security for Java library. This release fixes a thread safety issue in the ResourceResolver, and a regression in signature generation for the Canonical XML 1.1 algorithm, as well as a number of other bug fixes.</p><p>Please see the <a shape="
rect" href="java145releasenotes.html">release notes</a> for more information.</p><h3 id="old_news-ApacheXMLSecurityforC++1.6.0">Apache XML Security for C++ 1.6.0</h3><p>The Apache Santuario team are pleased to announce the release of version 1.6.0 of the Apache XML Security for C++ library. This release provides many bug fixes and a partial implementation of XML Signature 1.1 features, including ECDSA signatures.</p><h3 id="old_news-ApacheXMLSecurityforJava1.4.4">Apache XML Security for Java 1.4.4</h3><p>The Apache Santuario team are pleased to announce the release of version 1.4.4 of the Apache XML Security for Java library. This release contains some enhancements to the resolver API's. It also fixes some longstanding issues with interned Strings, as well as a number of bug fixes.</p><p>Please see the <a shape="rect" href="java144releasenotes.html">release notes</a> for more information.</p><h3 id="old_news-ApacheXMLSecurityforJava1.4.3">Apache XML Security for Java 1.4.3</h3><p>Th
e Apache Santuario team are pleased to announce the release of version 1.4.3 of the XML Security Java library. This release provides many bug fixes and a fix for the recently announced HMAC vulnerability in the XML Signature specification. You should upgrade to this release as soon as possible.</p><p>Please see the <a shape="rect" href="java143releasenotes.html">changelog</a> for more information.</p><h3 id="old_news-ApacheXMLSecurityforC++1.5.1">Apache XML Security for C++ 1.5.1</h3><p>The Apache Santuario team are pleased to announce the release of version 1.5.1 of the XML Security C++ library. This release provides some bug fixes and a fix for the recently announced HMAC vulnerability in the XML Signature specification.</p><p>Please see the <a shape="rect" href="c151releasenotes.html">changelog</a> for more information.</p><h3 id="old_news-ApacheXMLSecurityforC++1.5.0">Apache XML Security for C++ 1.5.0</h3><p>Version 1.5.0 of the XML Security C++ library has been released. This r
elease provides more bug fixes, partial support for Inclusive Canonicalization 1.1, and support for the Xerces 3.x official release and 32/64-bit portability APIs.</p><p>Please see the <a shape="rect" href="c150releasenotes.html">changelog</a> for more information.</p><h3 id="old_news-ApacheXMLSecurityforJava1.4.2">Apache XML Security for Java 1.4.2</h3><p>Version 1.4.2 of the XML Security Java library has been released. This is mainly a bugfix release but also contains a few new enhancements including support for XML Canonicalization 1.1.</p><p>Please see the <a shape="rect" href="java142releasenotes.html">changelog</a> for more information.</p><h3 id="old_news-ApacheXMLSecurityforJava1.4.1">Apache XML Security for Java 1.4.1</h3><p>Version 1.4.1 of the XML Security Java library has been released. This is a bugfix release that contains a major bugfix to the canonicalization engine introduced in the 1.4 release. It is recommended that 1.4 users upgrade to the new version as signatur
es containing non ascii characters created by this library are not according to the standard, and will be only validated by 1.4 library.</p><p>Please see the <a shape="rect" href="java141releasenotes.html">changelog</a> for more information.</p><h3 id="old_news-ApacheXMLSecurityforC++1.4.0">Apache XML Security for C++ 1.4.0</h3><p>The Apache Santuario team are proud to announce the release of version 1.4.0 of the XML Security C++ library. This release provides more bug fixes, improved automake and RPM packaging, and better error reporting.</p><p>This version also provides initial support for Xerces 3.0. If you are building for the 3.0 library under Windows, you will need to change the Xerces library (in link includes) to xerces_3?.lib.</p><p>Please see the <a shape="rect" href="c140releasenotes.html">changelog</a> for more information.</p><h3 id="old_news-ApacheXMLSecurityforC++1.3.1">Apache XML Security for C++ 1.3.1</h3><p>Version 1.3.1 of the XML Security C++ library has been rel
eased. This release contains some minor bug fixes and initial updates for Xerces 3.0. It also provides a new automake based build on *NIX. See the <a shape="rect" href="c131releasenotes.html">changelog</a> for more information.</p><h3 id="old_news-ApacheXMLSecurityforJava1.4.0">Apache XML Security for Java 1.4.0</h3><p>Version 1.4 of the XML Security Java library has been released. The main changes for this version are:</p><ul><li>Implementation of the standard API JSR105</li><li>Rewritten c14n that increase performance for signature with node-set transformations.</li><li>Memory footprint reduction and several bugfixes</li></ul><p>Refer to the <a shape="rect" href="java140releasenotes.html">changelog</a> for more information.</p><h3 id="old_news-ApacheXMLSecurityforC++1.3.0">Apache XML Security for C++ 1.3.0</h3><p>Version 1.3 of the XML Security C++ library has been released. This release features performance improvements and a complete message set for XKMS. See the <a shape="rect"
href="c130releasenotes.html">changelog</a> for more information.</p><h3 id="old_news-ApacheXMLSecurityforJava1.3.0">Apache XML Security for Java 1.3.0</h3><p>Version 1.3 of the XML Security Java library has been released. This version provides :</p><ul><li>Better speed & memory utilization.</li><li>Bug fixes.</li></ul><p>See the <a shape="rect" href="java130releasenotes.html">changelog</a> for more information.</p><h3 id="old_news-ApacheXMLSecurityforC++1.2.1">Apache XML Security for C++ 1.2.1</h3><p>Version 1.2.1 of the XML Security C++ library has been released. This minor release fixes versioning problems in the Windows project files. See the <a shape="rect" href="c121releasenotes.html">changelog</a> for more information.</p><h3 id="old_news-ApacheXMLSecurityforC++1.2.0">Apache XML Security for C++ 1.2.0</h3><p>Version 1.2 of the XML Security C++ library has been released. This version includes a number of bug fixes, together with a beta release of code to process and genera
te XKMS messages. See the <a shape="rect" href="c120releasenotes.html">changelog</a> for more information.</p><h3 id="old_news-ApacheXMLSecurityforJava1.2.1">Apache XML Security for Java 1.2.1</h3><p>Version 1.2.1 of the XML Security Java library has been released. This is a bugfix version, for more detail information see the <a shape="rect" href="java121releasenotes.html">changelog</a>.</p><h3 id="old_news-ApacheXMLSecurityforJava1.2.0">Apache XML Security for Java 1.2.0</h3><p>Version 1.2 of the XML Security Java library has been released. This version provides :</p><ul><li>Better speed & memory utilization.</li><li>Easier JCE integration.</li></ul><h3 id="old_news-ApacheXMLSecurityforJava1.1">Apache XML Security for Java 1.1</h3><p>Version 1.1 of the XML Security Java library has been released. This version provides :</p><ul><li>Beta implementation of XML Encryption</li><li>Bug fixes to Signature implementation</li></ul><h3 id="old_news-ApacheXMLSecurityforC++1.1">Apache XML
Security for C++ 1.1</h3><p>Version 1.1 of the XML Security C++ library has been released. Supporting Xerces 2.5, 2.4 and 2.3 together with Xalan 1.6 and 1.7, this version provides :</p><ul><li>Beta implementation of XML Encryption</li><li>Improved support for Windows Crypto API</li><li>Bug fixes to Signature implementation</li></ul><h3 id="old_news-ApacheXMLSecurityforC++1.0">Apache XML Security for C++ 1.0</h3><p>Version 1.00 of the XML Security C++ library is now released. This is the first stable release of the library. Functionality is still fairly basic, but all mandatory parts of the the DSIG standard are implemented.</p><p>This version supports Xerces 2.2 and 2.3 and Xalan 1.6.</p><h3 id="old_news-ApacheXMLSecurityforC++Beta0.2">Apache XML Security for C++ Beta 0.2</h3><p>The Beta 0.20 of the XML Security C++ library has now been released. Features:</p><ul><li>Ability to use the Windows Crypto API as a crypto provider</li><li>Several minor bug fixes in transforms and UNIX bu
ild process</li></ul><h3 id="old_news-ApacheXMLSecurityforJava2.0.1and1.5.7.1">Apache XML Security for Java 2.0.1 and 1.5.7</h3></div>
</div>
<!-- Content -->
</td>