The Apache Isis team is pleased to announce the release of Apache Isis 2.0.0-M9.
This is primarily a security release, to fix an XSS vulnerability
(CVE-2022-42466).
There are also one or two other small improvements and bug fixes.
Full release notes are available on the Apache Isis website at [1]
The Apache Hop PMC and community are pleased to announce the general
availability of Apache Hop 2.1.0.
This 2.1.0 release is the result of a massive effort by the Apache Hop
community and contains four and a half months of work on over 200 tickets.
The Hop Orchestration Platform, or Apache Hop, ai
Severity: moderate
Description:
A deserialization vulnerability existed in dubbo hessian-lite 3.2.12 and its
earlier versions, which could lead to malicious code execution.
This issue affects Apache Dubbo 2.7.x version 2.7.17 and prior versions; Apache
Dubbo 3.0.x version 3.0.11 and prior ver