On Wed, Apr 10, 2019 at 10:58 AM Mark Thomas <ma...@apache.org> wrote:
> The proposed Apache Tomcat 8.5.40 release is now available for voting. > > The major changes compared to the 8.5.39 release are: > > - Fix for CVE-2019-0232 a RCE vulnerability on Windows > > - Add support for Java 11 to the JSP compiler. Java 12 and 13 are also > now supported if used with a ECJ version with support for those Java > versions > > - Various NIO2 stability improvements > > > Along with lots of other bug fixes and improvements. > > For full details, see the changelog: > https://ci.apache.org/projects/tomcat/tomcat85/docs/changelog.html > > It can be obtained from: > https://dist.apache.org/repos/dist/dev/tomcat/tomcat-8/v8.5.40/ > > The Maven staging repo is: > https://repository.apache.org/content/repositories/orgapachetomcat-1208/ > > The tag is: > https://github.com/apache/tomcat/tree/8.5.40 > 5ec070352b283535946327b44228b610a27a76c5 > > > The proposed 8.5.40 release is: > [ ] Broken - do not release > [x] Stable - go ahead and release as 8.5.40 > +1 > > > Due to the security fix contained in this release, the voting period may > be shortened once sufficient votes are cast to enable a faster release. > > --------------------------------------------------------------------- > To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org > For additional commands, e-mail: dev-h...@tomcat.apache.org > >
