geronimo-scm mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From conflue...@apache.org
Subject [CONF] Apache Geronimo > Apache Geronimo v2.2.1 - Released
Date Sat, 11 Dec 2010 16:07:00 GMT
<html>
<head>
    <base href="https://cwiki.apache.org/confluence">
            <link rel="stylesheet" href="/confluence/s/1810/9/1/_/styles/combined.css?spaceKey=GMOxSITE&amp;forWysiwyg=true"
type="text/css">
    </head>
<body style="background: white;" bgcolor="white" class="email-body">
<div id="pageContent">
<div id="notificationFormat">
<div class="wiki-content">
<div class="email">
    <h2><a href="https://cwiki.apache.org/confluence/display/GMOxSITE/2010/12/11/Apache+Geronimo+v2.2.1+-+Released">Apache
Geronimo v2.2.1 - Released</a></h2>
    <h4>Blog post  <b>added</b> by             <a href="https://cwiki.apache.org/confluence/display/~genspring@gmail.com">Shawn
Jiang</a>
    </h4>
         <br/>
    <div class="notificationGreySide">
         <p><b>Dec 11, 2010</b></p>

<p>The Apache Geronimo project is pleased to announce the available of Apache Geronimo
v2.2.1 server. This release includes many new features, improvements, and bug fixes. Please
see the detail information in <a href="http://svn.apache.org/repos/asf/geronimo/server/tags/geronimo-2.2.1/RELEASE_NOTES-2.2.1.txt"
class="external-link" rel="nofollow">2.2.1 release notes</a> or or <a href="https://cwiki.apache.org/confluence/display/GMOxSITE/2.2.x+Security+Report"
class="external-link" rel="nofollow">2.2.x Security Report</a> for details.</p>

<p>A couple of highlights include:</p>

<ul>
	<li>Stateless Session Bean Failover support</li>
	<li>Web console navigation improvements .</li>
	<li>JMX over SSL improvements</li>
	<li>Added built-in user "monitor" who only has read-only access to monitoring pages.</li>
	<li>Encrypt password strings in deployment plans</li>
	<li>Start Derby NetworkServerControl with credentials to prevent unauthorized shutdowns</li>
	<li>Add db2 for iSeries tranql xa connector to server</li>
	<li>Upgrade Tomcat to 6.0.29, OpenEJB to 3.1.4, Derby to 10.5.3.0_1,ActiveMQ to 5.4.1,OpenJPA
to 1.2.2,txmanager to 2.2.1,WADI to 2.1.2,CXF to 2.1.10,Myfaces to 1.2.8,Aixs2 to 1.5.2,javamail
to 1.8.2 etc.</li>
</ul>


<p>Fixed vulnerabilities are:</p>

<ul>
	<li>CVE-2010-1632 and CVE-2010-2076: Axis2 and CXF HTTP binding enables DTD based XML
attacks.</li>
	<li>CVE-2010-1622: Spring Framework execution of arbitrary code</li>
	<li>CVE-2010-2227: Apache Tomcat Remote Denial Of Service and Information Disclosure
Vulnerability</li>
</ul>

    </div>
    <div id="commentsSection" class="wiki-content pageSection">
       <div style="float: right;">
            <a href="https://cwiki.apache.org/confluence/users/viewnotifications.action"
class="grey">Change Notification Preferences</a>
       </div>
       <a href="https://cwiki.apache.org/confluence/display/GMOxSITE/2010/12/11/Apache+Geronimo+v2.2.1+-+Released">View
Online</a>
           </div>
</div>
</div>
</div>
</div>
</body>
</html>

Mime
View raw message