[ANNOUNCE] Apache Jackrabbit 2.12.11 released

2020-09-10 Thread Julian Reschke
The Apache Jackrabbit community is pleased to announce the release of Apache Jackrabbit 2.12.11. The release is available for download at: http://jackrabbit.apache.org/downloads.html See the full release notes below for details about this release: Release Notes -- Apache Jackrabbit -- Ve

[ANNOUNCE] Apache ZooKeeper 3.6.2 released

2020-09-10 Thread Enrico Olivelli
The Apache ZooKeeper team is proud to announce Apache ZooKeeper version 3.6.2 ZooKeeper is a high-performance coordination service for distributed applications. It exposes common services - such as naming, configuration management, synchronization, and group services - in a simple interface so you

[ANNOUNCE] Apache Jackrabbit Oak 1.34.0 released

2020-09-10 Thread Marcel Reutegger
The Apache Jackrabbit community is pleased to announce the release of Apache Jackrabbit Oak 1.34.0. The release is available for download at: http://jackrabbit.apache.org/downloads.html See the full release notes below for details about this release: Release Notes -- Apache Jackrabbit Oak

[CVE-2020-11974] Apache DolphinScheduler (incubating) Remote Code execution vulnerability

2020-09-10 Thread lidong dai
Severity: Important Vendor: The Apache Software Foundation Versions Affected: DolphinScheduler 1.2.0 1.2.1 Description: it's related with mysql connectorj remote code execution vulnerability when choosing mysql as database, the detail info please refer: https://securityonline.info/mysql-conn

[CVE-2020-13922] Apache DolphinScheduler (incubating) Permission vulnerability

2020-09-10 Thread lidong dai
Severity: Important Vendor: The Apache Software Foundation Versions Affected: DolphinScheduler 1.2.0 1.2.1 1.3.1 Description: The vulnerability discovered is that ordinary user under any tenant can override other user's password through api interface /dolphinscheduler/users/update Mitigation:

[ANNOUNCE] Apache Commons IO 2.8.0

2020-09-10 Thread Gary Gregory
Commons IO is a package of Java utility classes like java.io. Classes in this package are considered to be so standard and of such high reuse as to justify existence in java.io. The Apache Commons IO library contains utility classes, stream implementations, file filters, file comparators, endian t

[ANNOUNCE] Apache Geode 1.13.0

2020-09-10 Thread Dave Barnes
The Apache Geode community is pleased to announce the availability of Apache Geode 1.13. Apache Geode is a data management platform that provides a database-like consistency model, reliable transaction processing and a shared-nothing architecture to maintain very low latency performance with high