This is an automated email from the ASF dual-hosted git repository.
veithen pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/axis-axis2-java-core.git
The following commit(s) were added to refs/heads/master by this push:
new 7e44d61 Add missing 1.7.x release notes
7e44d61 is described below
commit 7e44d61ffd4670e7b1fc20f7cf29428ae6d3d497
Author: Andreas Veithen <andreas.veit...@gmail.com>
AuthorDate: Sun Dec 19 16:19:55 2021 +0000
Add missing 1.7.x release notes
---
src/site/markdown/release-notes/1.7.1.md | 12 ++++++++++++
src/site/markdown/release-notes/1.7.10.md | 0
src/site/markdown/release-notes/1.7.2.md | 7 +++++++
src/site/markdown/release-notes/1.7.3.md | 21 +++++++++++++++++++++
src/site/markdown/release-notes/1.7.4.md | 18 ++++++++++++++++++
src/site/markdown/release-notes/1.7.5.md | 10 ++++++++++
src/site/markdown/release-notes/1.7.6.md | 20 ++++++++++++++++++++
src/site/markdown/release-notes/1.7.7.md | 7 +++++++
src/site/markdown/release-notes/1.7.8.md | 7 +++++++
src/site/markdown/release-notes/1.7.9.md | 7 +++++++
src/site/site.xml | 9 +++++++++
11 files changed, 118 insertions(+)
diff --git a/src/site/markdown/release-notes/1.7.1.md
b/src/site/markdown/release-notes/1.7.1.md
new file mode 100644
index 0000000..5d27872
--- /dev/null
+++ b/src/site/markdown/release-notes/1.7.1.md
@@ -0,0 +1,12 @@
+Apache Axis2 1.7.1 Release Note
+-------------------------------
+
+Apache Axis2 1.7.1 is a maintenance release that fixes a critical issue in ADB
+causing it to produce messages that don't conform to the XML schema (see
+[AXIS2-5741][]). All users of ADB in Axis2 1.7.0 should upgrade to 1.7.1
+as soon as possible.
+
+This release also fixes an issue with the Eclipse plugins (see [AXIS2-5738][]).
+
+[AXIS2-5741]: https://issues.apache.org/jira/browse/AXIS2-5741
+[AXIS2-5738]: https://issues.apache.org/jira/browse/AXIS2-5738
diff --git a/src/site/markdown/release-notes/1.7.10.md
b/src/site/markdown/release-notes/1.7.10.md
new file mode 100644
index 0000000..e69de29
diff --git a/src/site/markdown/release-notes/1.7.2.md
b/src/site/markdown/release-notes/1.7.2.md
new file mode 100644
index 0000000..5498e03
--- /dev/null
+++ b/src/site/markdown/release-notes/1.7.2.md
@@ -0,0 +1,7 @@
+Apache Axis2 1.7.2 Release Note
+-------------------------------
+
+Apache Axis2 1.7.2 is a maintenance release that upgrades Apache Axiom to
+version 1.2.19 and fixes several [issues][1] reported since 1.7.1.
+
+[1]:
https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=10611&version=12334939
diff --git a/src/site/markdown/release-notes/1.7.3.md
b/src/site/markdown/release-notes/1.7.3.md
new file mode 100644
index 0000000..bd69af6
--- /dev/null
+++ b/src/site/markdown/release-notes/1.7.3.md
@@ -0,0 +1,21 @@
+Apache Axis2 1.7.3 Release Note
+-------------------------------
+
+Apache Axis2 1.7.3 is a security release that contains a fix for
[CVE-2010-3981][]. That security
+vulnerability affects the admin console that is part of the Axis2 Web
application and was originally
+reported for SAP BusinessObjects (which includes a version of Axis2). That
report didn't mention
+Axis2 at all and the Axis2 project only recently became aware (thanks to
Devesh Bhatt and Nishant
+Agarwala) that the issue affects Apache Axis2 as well.
+
+The admin console now has a CSRF prevention mechanism and all known XSS
vulnerabilities as well as
+two non-security bugs in the admin console ([AXIS2-4764][] and [AXIS2-5716][])
have been fixed.
+Users of the Axis2 WAR distribution are encouraged to upgrade to 1.7.3 to take
advantage of these
+improvements.
+
+This release also fixes a regression in the HTTP client code that is triggered
by the presence of
+certain types of cookies in HTTP responses (see [AXIS2-5772][]).
+
+[CVE-2010-3981]: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3981
+[AXIS2-4764]: https://issues.apache.org/jira/browse/AXIS2-4764
+[AXIS2-5716]: https://issues.apache.org/jira/browse/AXIS2-5716
+[AXIS2-5772]: https://issues.apache.org/jira/browse/AXIS2-5772
diff --git a/src/site/markdown/release-notes/1.7.4.md
b/src/site/markdown/release-notes/1.7.4.md
new file mode 100644
index 0000000..addc610
--- /dev/null
+++ b/src/site/markdown/release-notes/1.7.4.md
@@ -0,0 +1,18 @@
+Apache Axis2 1.7.4 Release Note
+-------------------------------
+
+Apache Axis2 1.7.4 is a maintenance release that includes fixes for several
+issues, including the following security issues:
+
+* Session fixation ([AXIS2-4739][]) and XSS ([AXIS2-5683][]) vulnerabilities
+ affecting the admin console.
+
+* A dependency on an Apache HttpClient version affected by known security
+ vulnerabilities (CVE-2012-6153 and CVE-2014-3577); see [AXIS2-5757][].
+
+The complete list of issues fixed in this version can be found [here][1].
+
+[AXIS2-4739]: https://issues.apache.org/jira/browse/AXIS2-4739
+[AXIS2-5683]: https://issues.apache.org/jira/browse/AXIS2-5683
+[AXIS2-5757]: https://issues.apache.org/jira/browse/AXIS2-5757
+[1]:
https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=10611&version=12335945
\ No newline at end of file
diff --git a/src/site/markdown/release-notes/1.7.5.md
b/src/site/markdown/release-notes/1.7.5.md
new file mode 100644
index 0000000..0fd7a83
--- /dev/null
+++ b/src/site/markdown/release-notes/1.7.5.md
@@ -0,0 +1,10 @@
+Apache Axis2 1.7.5 Release Note
+-------------------------------
+
+Apache Axis2 1.7.5 is a maintenance release that includes fixes for several
+issues, including a local file inclusion vulnerability ([AXIS2-5846][]).
+
+The complete list of issues fixed in this version can be found [here][1].
+
+[AXIS2-5846]: https://issues.apache.org/jira/browse/AXIS2-5846
+[1]:
https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=10611&version=12338598
diff --git a/src/site/markdown/release-notes/1.7.6.md
b/src/site/markdown/release-notes/1.7.6.md
new file mode 100644
index 0000000..c74bd56
--- /dev/null
+++ b/src/site/markdown/release-notes/1.7.6.md
@@ -0,0 +1,20 @@
+Apache Axis2 1.7.6 Release Note
+-------------------------------
+
+Apache Axis2 1.7.6 is a maintenance release containing the following fixes and
+improvements:
+
+* The JSTL is now packaged into the Axis2 Web application. This fixes issues
+ with the Admin consoles on servlet containers that don't provide the JSTL.
+* The `commons-fileupload` dependency has been updated to a version that
fixes
+ CVE-2016-1000031 ([AXIS2-5853][]).
+* A fix for [AXIS2-5863][], a possible null pointer dereference in generated
+ code flagged by static code analyzers.
+* The dependencies of the Maven plugins have been updated to prevent issues
+ with temporary files being written to the source tree. This is part of the
+ fix for [AXIS2-5781][].
+* The source code is now buildable with Java 8.
+
+[AXIS2-5781]: https://issues.apache.org/jira/browse/AXIS2-5781
+[AXIS2-5853]: https://issues.apache.org/jira/browse/AXIS2-5853
+[AXIS2-5863]: https://issues.apache.org/jira/browse/AXIS2-5863
diff --git a/src/site/markdown/release-notes/1.7.7.md
b/src/site/markdown/release-notes/1.7.7.md
new file mode 100644
index 0000000..6594fc5
--- /dev/null
+++ b/src/site/markdown/release-notes/1.7.7.md
@@ -0,0 +1,7 @@
+Apache Axis2 1.7.7 Release Note
+-------------------------------
+
+Apache Axis2 1.7.7 is a maintenance release that fixes several [issues][1]
+reported since 1.7.6.
+
+[1]:
https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=10611&version=12341295
diff --git a/src/site/markdown/release-notes/1.7.8.md
b/src/site/markdown/release-notes/1.7.8.md
new file mode 100644
index 0000000..eec1607
--- /dev/null
+++ b/src/site/markdown/release-notes/1.7.8.md
@@ -0,0 +1,7 @@
+Apache Axis2 1.7.8 Release Note
+-------------------------------
+
+Apache Axis2 1.7.8 is a maintenance release that fixes several [issues][1]
+reported since 1.7.7.
+
+[1]:
https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=10611&version=12342260
diff --git a/src/site/markdown/release-notes/1.7.9.md
b/src/site/markdown/release-notes/1.7.9.md
new file mode 100644
index 0000000..9491fa2
--- /dev/null
+++ b/src/site/markdown/release-notes/1.7.9.md
@@ -0,0 +1,7 @@
+Apache Axis2 1.7.9 Release Note
+-------------------------------
+
+Apache Axis2 1.7.9 is a maintenance release that upgrades to Apache Axiom
+1.2.21 and fixes several [issues][1] reported since 1.7.8.
+
+[1]:
https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=10611&version=12343353
diff --git a/src/site/site.xml b/src/site/site.xml
index abf93a4..e1295e7 100644
--- a/src/site/site.xml
+++ b/src/site/site.xml
@@ -48,6 +48,15 @@
<item name="1.6.3" href="release-notes/1.6.3.html"/>
<item name="1.6.4" href="release-notes/1.6.4.html"/>
<item name="1.7.0" href="release-notes/1.7.0.html"/>
+ <item name="1.7.1" href="release-notes/1.7.1.html"/>
+ <item name="1.7.2" href="release-notes/1.7.2.html"/>
+ <item name="1.7.3" href="release-notes/1.7.3.html"/>
+ <item name="1.7.4" href="release-notes/1.7.4.html"/>
+ <item name="1.7.5" href="release-notes/1.7.5.html"/>
+ <item name="1.7.6" href="release-notes/1.7.6.html"/>
+ <item name="1.7.7" href="release-notes/1.7.7.html"/>
+ <item name="1.7.8" href="release-notes/1.7.8.html"/>
+ <item name="1.7.9" href="release-notes/1.7.9.html"/>
<item name="1.8.0" href="release-notes/1.8.0.html"/>
</item>
<item name="Modules" href="modules/index.html" />
