The CAS development team is pleased to announce the release of Jasig CAS 3.5.2. This is a point release that should be drop-in compatible with other 3.5.x releases. Download bundles are available on the Jasig download site [1] and artifacts are available in Maven Central.
This release contains security fixes: 1. XSS vector on the login form 2. Possible security bypass in the default ClearPass configuration The release also contains bug fixes and improvements. Please see the release notes [2] for a comprehensive description of changes. Best, Marvin [1] http://www.jasig.org/cas/download [2] https://issues.jasig.org/secure/ReleaseNote.jspa?projectId=10007&version=12304 -- You are currently subscribed to cas-dev@lists.jasig.org as: arch...@mail-archive.com To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-dev
