[this announcement is available online at https://s.apache.org/VWeg ]
Hurrah for March! Let's review what the Apache Community has achieved this week:
ASF Board –management and oversight of the business affairs of the corporation
in accordance with the Foundation's bylaws.
- The Apache
CVE-2019-0200: Apache Qpid Broker-J Denial of Service due to malformed AMQP
0-8 to 0-10 commands
Severity: Critical
Vendor: The Apache Software Foundation
Versions Affected: 6.0.0-7.0.6 (inclusive), 7.1.0
Description:
A Denial of Service vulnerability [1] was found in Apache Qpid Broker-J
The Apache Qpid (http://qpid.apache.org) community is pleased to
announce the immediate availability of Apache Qpid Broker-J versions 7.1.1
and 7.0.7.
These are the latest bugfix releases of pure java implementation of Qpid
messaging broker
supporting the Advanced Message Queuing Protocol 1.0
The Apache Trafodion team is proud to announce the release of Apache
Trafodion 2.3.0.
Apache Trafodion is a webscale SQL-on-Hadoop solution enabling
transactional or operational workloads on Apache Hadoop.
Vote thread: