Hi Jacopo, All, Maybe better to integrate OFBIZ-12470: "[SECURITY] CVE-2021-45105: Apache Log4j2" in 18.12.04, or create 18.12.05?
Thanks Jacques Le 17/12/2021 à 10:32, Jacopo Cappellato a écrit :
This is the vote thread to release a new bug fix release for the release18.12 branch. This new release, "Apache OFBiz 18.12.04" will supersede all the previous releases from the same branch. The release files can be downloaded from here: https://dist.apache.org/repos/dist/dev/ofbiz/ and are: * apache-ofbiz-18.12.04.zip * KEYS: text file with keys * apache-ofbiz-18.12.04.zip.asc: the detached signature file * apache-ofbiz-18.12.04.zip.sha512: checksum file Please download and test the zip file and its signatures (for instructions on testing the signatures see [*]). Vote: [ +1] release as Apache OFBiz 18.12.04 [ -1] do not release For more details about this process please read [**]. [*] https://cwiki.apache.org/confluence/display/OFBIZ/Release+Management+Guide+for+OFBiz#ReleaseManagementGuideforOFBiz-Votingonarelease [**] http://www.apache.org/foundation/voting.html