-----
- Release Notes for Archiva 1.3.3
+ Release Notes for Archiva 1.3.4
-----
-Release Notes for Archiva 1.3.3
+Release Notes for Archiva 1.3.4
- The Apache Archiva team would like to announce the release of Archiva 1.3.3. Archiva is {{{http://archiva.apache.org/download.html}
+ The Apache Archiva team would like to announce the release of Archiva 1.3.4. Archiva is {{{http://archiva.apache.org/download.html}
available for download from the web site}}.
Archiva is an application for managing one or more remote repositories, including administration, artifact handling, browsing and searching.
* Security Vulnerabilities
- * A CSRF security vulnerability fix is available in 1.3.2. It is important that users using lower versions of Archiva
- upgrade to this version (or higher).
+ * A CSRF security vulnerability fix is present in 1.3.2 and earlier.
+
+ * An XSS security vulnerability is present in 1.3.3 and earlier.
+
+ It is important that users using lower versions of Archiva upgrade to this version (or higher).
+ See {{{http://archiva.apache.org/security.html} Archiva Security}} for more details.
* New in Archiva 1.3
* Release Notes
- The Archiva 1.3.3 feature set can be seen in the {{{tour/index.html} feature tour}}.
+ The Archiva 1.3.4 feature set can be seen in the {{{tour/index.html} feature tour}}.
+
+* Changes in Archiva 1.3.4
+
+ Released: <<9 February 2011>>
+
+** Task
+
+ * [MRM-1455] - upgrade to Redback 1.2.6
* Changes in Archiva 1.3.3
projects / archiva.git / commitdiff