Author: mukulg
Date: Thu Oct 4 06:14:53 2018
New Revision: 1842775
URL: http://svn.apache.org/viewvc?rev=1842775&view=rev
Log:
minor changes to release notes, for XercesJ2 2.12.0 release. making updates to
site
Modified:
xerces/site/trunk/production/xerces2-j/releases.html
Modified: xerces/site/trunk/production/xerces2-j/releases.html
URL:
http://svn.apache.org/viewvc/xerces/site/trunk/production/xerces2-j/releases.html?rev=1842775&r1=1842774&r2=1842775&view=diff
==============================================================================
--- xerces/site/trunk/production/xerces2-j/releases.html (original)
+++ xerces/site/trunk/production/xerces2-j/releases.html Thu Oct 4 06:14:53
2018
@@ -75,6 +75,12 @@
<CODE>
[Mukul Gandhi]
</CODE></LI><LI><IMG alt="fix:" border="0" hspace="4"
src="resources/changes-fix.jpg" vspace="4">
+ Fixed possible security issue: an implementation of the
NamedNodeMapImpl class in the JAXP component did not
+ limit the amount of memory allocated when creating object
instance from a serialized form. A specially-crafted
+ input could cause a java application to use an excessive amount
of memory when deserialized.
+ <CODE>
+ [David Dillard, Michael Glavassevich, Mukul Gandhi]
+ </CODE></LI><LI><IMG alt="fix:" border="0" hspace="4"
src="resources/changes-fix.jpg" vspace="4">
Implemented minor and major fixes in certain areas, to XML
Schema 1.0 and 1.1 implementations.
<CODE>
[Michael Glavassevich, Khaled Noaman, Sandy Gao, Mukul Gandhi]
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
