https://issues.apache.org/bugzilla/show_bug.cgi?id=42886
[EMAIL PROTECTED] changed:
What |Removed |Added
----------------------------------------------------------------------------
Status|REOPENED |RESOLVED
Resolution| |FIXED
--- Comment #8 from [EMAIL PROTECTED] 2008-05-12 09:25:49 PST ---
(In reply to comment #7)
> Yes, downloading the 1.4.2 beta 2 solves the problem. But it seems odd not to
> release a new version of an XML security library that sends encrypted XML i
> plain text, don't you think? The lib is one year old and the bug was reported
> ten months ago.
>
> I can't find any notes or "known issues" mentioning this serious bug. It might
> be I'm not into the Apache way of handling such things but imho a note in the
> Java section under 1.4.1 release would be kind. Perhaps also the link to the
> beta jar you provided here. My understanding of "resolved" in combination with
> the version number 1.4.1 is that the issue is solved in 1.4.1.
The version in the bugzilla report is used to indicate which version of the
software contains the bug (in this case 1.4.1). There doesn't seem to be a
field for indicating which release contains the fix (which is odd for a bug
reporting system, but anyway), so the best way to find that information is to
check either the CHANGELOG.txt file in the release bundle or
http://santuario.apache.org/changes.html
> Anyway, thanks for the help with the beta jar!
Thanks for testing. I agree that this issue is serious and I will make a note
of that in the documentation and encourage users to use 1.4.2 when it is
released (soon).
--
Configure bugmail: https://issues.apache.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.
