You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@santuario.apache.org by Sean Mullan <Se...@Sun.COM> on 2009/07/22 19:23:15 UTC

XML Security 1.4.3 Release now available for download

The Apache XML Security team is pleased to announce the release of 
version 1.4.3 of the Java xml-security library [1, 2]. This release 
provides many bug fixes and a fix for the recently announced HMAC 
vulnerability in the XML Signature specification [3]. You should upgrade 
to this release as soon as possible.

Please see the changelog [4] for more information on what has been fixed.

Thanks,
Sean

[1] http://santuario.apache.org/
[2] http://santuario.apache.org/dist/java-library/
[3] http://www.kb.cert.org/vuls/id/466161
[4] http://santuario.apache.org/changes.html

RE: XML Security 1.4.3 Release now available for download

Posted by Colm O hEigeartaigh <co...@progress.com>.

...and it's now available in the central maven repository:

http://repo2.maven.org/maven2/org/apache/santuario/xmlsec/1.4.3/

Colm.

-----Original Message-----
From: Sean.Mullan@Sun.COM [mailto:Sean.Mullan@Sun.COM] 
Sent: 22 July 2009 18:23
To: security-dev@xml.apache.org
Subject: XML Security 1.4.3 Release now available for download

The Apache XML Security team is pleased to announce the release of 
version 1.4.3 of the Java xml-security library [1, 2]. This release 
provides many bug fixes and a fix for the recently announced HMAC 
vulnerability in the XML Signature specification [3]. You should upgrade

to this release as soon as possible.

Please see the changelog [4] for more information on what has been
fixed.

Thanks,
Sean

[1] http://santuario.apache.org/
[2] http://santuario.apache.org/dist/java-library/
[3] http://www.kb.cert.org/vuls/id/466161
[4] http://santuario.apache.org/changes.html