Stay Informed

This week, read about:

  • Poorly Configured Apache Airflow Instances Leak Credentials for Popular Services.
  • Google Commits $1 Million to Secure Open-Source Program.
  • PostgreSQL 14 Improves Open Source Database Performance.

 

Key Security, Maintenance, and Features Releases
 

Non-Security Updates

Apache Camel 3.12.0
CAMEL-17008
okStatusCodeRange does not permit single status code
CAMEL-17007
camel-aws2-lambda: GetAlias is not working
CAMEL-17004
camel-servlet - Should not close HttpServletInputStream when reading body into stream caching
CAMEL-16990
camel-core - Stream caching checking for caused exception can lead to converter problem

Apache Maven 3.8.3
* [MNG-7045] - Drop CDI API from Maven
* [MNG-7214] - Bad transitive dependency parent from CDI API
* [MNG-7215] - [Regression] Maven Site Plugin cannot resolve parent 
site descriptor without locale
* [MNG-7216] - Revert MNG-7170

Apache Tomcat 10.0.12 and 9.0.54
10.0.12
Fix:  Provide the DataSource in the constructor of DataSourceUserDatabase, since it is always global. (remm)
Fix:  Fix delete then create object manipulations with DataSourceUserDatabase. (remm)
Fix:  65553: Implement a work-around for a JRE bug that can trigger a memory leak when using the JNDI realm. (markt)
Fix:  65586: Fix the bloom filter used to improve performance of archive file look ups in the web resources implementation so it works correctly for directory lookups whether or not the provided directory name includes the trailing /. (markt)
9.0.54
Fix:  Provide the DataSource in the constructor of DataSourceUserDatabase, since it is always global. (remm)
Fix:  Fix delete then create object manipulations with DataSourceUserDatabase. (remm)
Fix:  65553: Implement a work-around for a JRE bug that can trigger a memory leak when using the JNDI realm. (markt)
Fix:  65586: Fix the bloom filter used to improve performance of archive file look ups in the web resources implementation so it works correctly for directory lookups whether or not the provided directory name includes the trailing /. (markt)

PostgreSQL 14 
Stored procedures can now return data via OUT parameters.
The SQL-standard SEARCH and CYCLE options for common table expressions have been implemented.
Subscripting can now be applied to any data type for which it is a useful notation, not only arrays. In this release, the jsonb and hstore types have gained subscripting operators.
Range types have been extended by adding multiranges, allowing representation of noncontiguous data ranges.

 

View all OpenUpdate editions >