[this announcement is available online at https://s.apache.org/jjzT ]
Popular Open Source Remote Procedure Call framework in use at dozens of
companies, including Alibaba Group, China Life, China Telecom, Dangdang, Didi
Chuxing, Haier, and Industrial and Commercial Bank of China, among others.
[this post is available online at https://s.apache.org/9Qbv ]
by York Shen, member of the Apache Weex Project Management Committee
I am a Project Management Committee (PMC) member of Apache Weex (Incubating), a
cross-platform mobile development framework, widely used in many mobile apps,
Severity
Medium
Vendor
The Apache Software Foundation
Versions Affected
Apache JSPWiki up to 2.11.0.M3
Description
A carefully crafted plugin link invocation could trigger an XSS
vulnerability on Apache JSPWiki, which could lead to session hijacking.
Initial reporting indicated
Severity
Medium
Vendor
The Apache Software Foundation
Versions Affected
Apache JSPWiki up to 2.11.0.M3
Description
A carefully crafted InterWiki link could trigger an XSS vulnerability on
Apache JSPWiki, which could lead to session hijacking.
Mitigation
Apache JSPWiki users should upgrade to
Severity
Medium
Vendor
The Apache Software Foundation
Versions Affected
Apache JSPWiki up to 2.11.0.M3
Description
A carefully crafted malicious attachment could trigger an XSS vulnerability
on Apache JSPWiki, which could lead to session hijacking.
Mitigation
Apache JSPWiki users should
The Apache JSPWiki team is pleased to announce the release of JSPWiki
2.11.0.M4.
This is the fourth release towards the 2.11 series of Apache JSPWiki, a
feature-rich and
extensible WikiWiki engine built around the standard JEE components. M#
releases are as
production-ready as any other JSPWiki
The Apache Qpid (http://qpid.apache.org) community is pleased to
announce the immediate availability of version 6.3.4 of Apache Qpid JMS for
AMQP 0-x.
This is the latest release of our legacy JMS client supporting AMQP
0-8, 0-9, 0-9-1 and 0-10.
The release is available now from our website:
The Apache Kylin team is pleased to announce the immediate availability of
the 2.6.2 release.
This is a bugfix release after 2.6.1, with 9 enhancements and 27 bug fixes.
All of the changes in this release can be found in:
https://kylin.apache.org/docs/release_notes.html
You can download the
The Apache Tika project is pleased to announce the release of Apache Tika
1.21. The release contents have been pushed out to the main Apache
release site and to the Maven Central sync, so the releases should be
available as soon as the mirrors get the syncs.
Apache Tika is a toolkit for detecting