Yeah a good idea to wait for the Camel release to pickup that security fix.
On Sat, Nov 21, 2015 at 4:16 PM, Krzysztof Sobkowiak <krzys.sobkow...@gmail.com> wrote: > Hi > > When do you expect to release this version? I'm going to release ServiceMix > and when Camel will be released soon I can wait for this new Camel release > > Regards > Krzysztof > > On 20.11.2015 11:41, Gregor Zurowski wrote: >> Hi Everyone: >> >> As we are getting close to releasing Camel 2.16.1 that will include an >> important security fix for a recently reported object de-serialization >> vulnerability in Apache Commons Collections [1], I was wondering >> whether we should start building a patch release for the 2.15.x >> branch? What do you think? >> >> Thanks, >> Gregor >> >> [1] >> https://blogs.apache.org/foundation/entry/apache_commons_statement_to_widespread > > -- > Krzysztof Sobkowiak > > JEE & OSS Architect, Integration Architect > Apache Software Foundation Member (http://apache.org/) > Apache ServiceMix Committer & PMC Member (http://servicemix.apache.org/) > Senior Solution Architect @ Capgemini SSC (http://www.capgeminisoftware.pl/) > > > 33rd Degree 4charity (http://2015.33degree.org/) -- Claus Ibsen ----------------- http://davsclaus.com @davsclaus Camel in Action 2: https://www.manning.com/ibsen2
