The Apache CXF team is proud to announce the availability of the latest patches for the fixes branches: 2.2.9, 2.1.10, and 2.0.13
Apache CXF is an open source services framework. CXF helps you build and develop services using front end programming APIs, like JAX-WS and JAX-RS. These services can speak a variety of protocols such as SOAP, XML/HTTP, RESTful HTTP, or CORBA and work over a variety of transports such as HTTP, JMS or JBI. These are mostly patch releases to fix problems and issues that users have encountered with over 20 JIRA issues resolved for 2.2.9. However, these patches fix a very important security vulnerability that will be publicly disclosed in the upcoming weeks. All users are STRONGLY encouraged to upgrade to these latest patches as soon as possible. Note: We've included patches for the 2.0.x and 2.1.x branches that only contain fixes for that vulnerability to make it easier for people using the older versions to migrate to a version that is safe. We don't anticipate any more updates to the 2.0.x and 2.1.x branches and strongly encourage users to upgrade to 2.2.9. For more information see: * Download: http://cxf.apache.org/download.html * Website: http://cxf.apache.org/ * Mailing lists: http://cxf.apache.org/mailing-lists.html If you have feedback, questions or would like to get involved in the CXF project please join the mailing lists and let us know your thoughts. The Apache CXF Team http://cxf.apache.org/
signature.asc
Description: This is a digitally signed message part.
