You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@camel.apache.org by Gregor Zurowski <gr...@list.zurowski.org> on 2015/11/18 08:28:30 UTC

[VOTE] [CANCEL] Release Apache Camel 2.16.1

As previously discussed in this thread: This vote is cancelled due to
an object de-serialization vulnerability found in Apache Commons
Collections [1].  I'll start a new vote for 2.16.1 shortly that will
contain version 3.2.2 of Apache Commons Collections with a patch for
this issue [2].

Thanks,
Gregor

[1] https://blogs.apache.org/foundation/entry/apache_commons_statement_to_widespread
[2] https://commons.apache.org/proper/commons-collections/release_3_2_2.html


On Sat, Nov 14, 2015 at 8:35 AM, Gregor Zurowski
<gr...@list.zurowski.org> wrote:
> Hi Everyone:
>
> This is a vote to release Apache Camel 2.16.1 that has over 60 fixes
> and improvements.
>
> Release notes: https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12311211&version=12333749
>
> Staging repository:
> https://repository.apache.org/content/repositories/orgapachecamel-1042/
>
> Tarballs: https://repository.apache.org/content/repositories/orgapachecamel-1042/org/apache/camel/apache-camel/2.16.1/
>
> Tag: https://git-wip-us.apache.org/repos/asf?p=camel.git;a=tag;h=ce71d873fed79c72c48da951117a1544613d1626
>
> Please test this release candidate and cast your vote.
> [ ] +1 Release the binary as Apache Camel 2.16.1
> [ ] -1 Veto the release (provide specific comments)
>
> The vote is open for at least 72 hours.
>
> Thanks,
> Gregor