Return-Path: Delivered-To: apmail-geronimo-dev-archive@www.apache.org Received: (qmail 39062 invoked from network); 11 Dec 2010 16:45:41 -0000 Received: from unknown (HELO mail.apache.org) (140.211.11.3) by 140.211.11.9 with SMTP; 11 Dec 2010 16:45:41 -0000 Received: (qmail 72684 invoked by uid 500); 11 Dec 2010 16:45:40 -0000 Delivered-To: apmail-geronimo-dev-archive@geronimo.apache.org Received: (qmail 72444 invoked by uid 500); 11 Dec 2010 16:45:38 -0000 Mailing-List: contact dev-help@geronimo.apache.org; run by ezmlm Precedence: bulk list-help: list-unsubscribe: List-Post: Reply-To: dev@geronimo.apache.org List-Id: Delivered-To: mailing list dev@geronimo.apache.org Received: (qmail 72437 invoked by uid 99); 11 Dec 2010 16:45:38 -0000 Received: from athena.apache.org (HELO athena.apache.org) (140.211.11.136) by apache.org (qpsmtpd/0.29) with ESMTP; Sat, 11 Dec 2010 16:45:38 +0000 X-ASF-Spam-Status: No, hits=1.5 required=10.0 tests=FREEMAIL_FROM,HTML_MESSAGE,RCVD_IN_DNSWL_LOW,SPF_PASS,T_TO_NO_BRKTS_FREEMAIL X-Spam-Check-By: apache.org Received-SPF: pass (athena.apache.org: domain of xhhsld@gmail.com designates 209.85.214.173 as permitted sender) Received: from [209.85.214.173] (HELO mail-iw0-f173.google.com) (209.85.214.173) by apache.org (qpsmtpd/0.29) with ESMTP; Sat, 11 Dec 2010 16:45:32 +0000 Received: by iwn40 with SMTP id 40so6892009iwn.32 for ; Sat, 11 Dec 2010 08:45:11 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:received:received:in-reply-to :references:date:message-id:subject:from:to:content-type; bh=A6v2NwEbKAlVg1FtdBxxkfzF9dzheo+7E8pIMtc3LK8=; b=n+2g4nHNDyPfAn0Fy+a/xzCVxn+V1r1+p06OpGKo6791SkNkNrFZOJPWr9CpBbLX8H m5pRO18Zx0MLwM4tuRxFMZhrLF3xqive/l013+zczhKqbvtV/hrZrV9oYvIw22S7snI4 KKT9iIUuqj+RpwCOkPiHW/TDpNflloNMezoSU= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :content-type; b=WTbUVUWBvajNUUCyBXKcv3PvQg6aZY47qiFGBQ9PHKLV/KM60NiDdPfp7CClBKxGDb feJ3dhbMZwmgEU/ofHEqJC8NaiiMIUVJ2nYfd4yLJZC6+boIDzZ3dAGHD4pIOku0yAF9 O4vFQ1WSOLh8gZYDcfagCqKNotY/K5SEr0akE= MIME-Version: 1.0 Received: by 10.231.14.74 with SMTP id f10mr535420iba.119.1292085910965; Sat, 11 Dec 2010 08:45:10 -0800 (PST) Received: by 10.231.155.146 with HTTP; Sat, 11 Dec 2010 08:45:10 -0800 (PST) In-Reply-To: References: Date: Sun, 12 Dec 2010 00:45:10 +0800 Message-ID: Subject: Re: [ANNOUNCE] Apache Geronimo 2.2.1 Release From: Ivan To: dev@geronimo.apache.org Content-Type: multipart/alternative; boundary=00221532cb38be0e9904972531b2 --00221532cb38be0e9904972531b2 Content-Type: text/plain; charset=ISO-8859-1 Congrats ! 2010/12/12 Shawn Jiang > The Apache Geronimo project is pleased to announce the available of Apache > Geronimo v2.2.1 server. This release includes many new features, > improvements, and bug fixes. Please see the detail information in 2.2.1 > release notes[1] or 2.2.x Security Report[2]. > > A couple of highlights are: > > * Stateless Session Bean Failover support > * Web console navigation improvements . > * JMX over SSL improvements > * Added built-in user "monitor" who only has read-only access to monitoring > pages. > * Encrypt password strings in deployment plans > * Start Derby NetworkServerControl with credentials to prevent unauthorized > shutdowns > * Add db2 for iSeries tranql xa connector to server > * Upgrade Tomcat to 6.0.29, OpenEJB to 3.1.4, ActiveMQ to 5.4.1, OpenJPA to > 1.2.2, Aixs2 to 1.5.2, txmanager to 2.2.1, CXF to 2.1.10, Myfaces to > 1.2.8, Derby to 10.5.3.0_1, WADI to 2.1.2 etc. > > > Fixed vulnerabilities are: > > * CVE-2010-1632 and CVE-2010-2076: Axis2 and CXF HTTP binding enables DTD > based XML attacks. > * CVE-2010-1622: Spring Framework execution of arbitrary code > * CVE-2010-2227: Apache Tomcat Remote Denial Of Service and Information > Disclosure Vulnerability > > > The individual jars and plugins have been available through maven > repository, and you can also download the source jar and assemblies in > download site[3]. > > A big THANK YOU to all that contributed to this release! Great work > everyone! > > [1] > http://svn.apache.org/repos/asf/geronimo/server/tags/geronimo-2.2.1/RELEASE_NOTES-2.2.1.txt > [2] > https://cwiki.apache.org/confluence/display/GMOxSITE/2.2.x+Security+Report > [3]http://www.apache.org/dist/geronimo/2.2.1/ > > -- > Shawn > > -- Ivan --00221532cb38be0e9904972531b2 Content-Type: text/html; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable Congrats !

2010/12/12 Shawn Jiang <genspring@gmail.com>
The Apache Geronimo project is pleased to announce the available = of Apache Geronimo v2.2.1 server. This release includes many new features, = improvements, and bug fixes. Please see the detail information in 2.2.1 rel= ease notes[1] or 2.2.x Security Report[2].

A couple of highlights are:

<= blockquote style=3D"margin: 0pt 0pt 0pt 40px; border: medium none; padding:= 0px;">
* Stateless Session Bean Failover support
* Web console navigation improvements .
* JMX over SSL improvements
<= div>
* Start Derby NetworkServerControl with credentials to prevent una= uthorized shutdowns
* Add db2 for iSeries tranql xa co= nnector to server
* Upgrade Tomcat to 6.0.29, OpenEJB to 3.1.4, ActiveMQ to 5= .4.1, OpenJPA to 1.2.2,=A0Aixs2 to 1.5.2,=A0txmanager to 2.2.1, CXF to 2.1.= 10, Myfaces to 1.2.8,=A0Derby to 10.5.3.0_1,=A0WADI to 2.1.2=A0etc.



--
Ivan
--00221532cb38be0e9904972531b2--