headers
Morgan Delagrange | 5 Apr 2002 21:32
Picon
Favicon

[ANNOUNCE] Jakarta Commons Collections 2.0 Released

Come and get the Commons Collections 2.0 release!

    http://jakarta.apache.org/commons/components.html

Commons-Collections provides a suite of classes that extend or augment the
Java Collections Framework.  Collections 2.0 includes 11 new collections and
3 new comparators, as well as several enhancements and bug fixes.  Enjoy!

- The Commons Dev Team

_________________________________________________________
Do You Yahoo!?
Get your free  <at> yahoo.com address at http://mail.yahoo.com
Permalink | Reply | 0 comments |
headers
Remy Maucherat | 9 Apr 2002 19:18
Picon
Favicon

[SECURITY] Cross site scripting vulnerability revealed in 'examples' webapp of Apache Tomcat

Cross Site scripting security vulnerabilities exist in the 'examples' web
application which is distributed along with Apache Tomcat. This affects all
released versions of Tomcat, including 3.x and 4.x.

No other components of Tomcat are currently known to be vulnerable to cross
site scripting.

To address this security issue, administrators of public servers which have
deployed Apache Tomcat should make sure the 'examples' webapp is removed
from the deployed Tomcat installation.
The 'examples' webapp will be modified in future Apache Tomcat releases to
prevent cross site scripting.

Background information on cross site scripting: This allows a mailicious
website to execute JavaScript code using the security policy of a trusted
domain.
More information: http://httpd.apache.org/info/css-security/

Remy and Larry
Permalink | Reply | 0 comments |
headers
Glenn Nielsen | 15 Apr 2002 05:24

Jakarta-Taglibs Version 1.0 JSP 1.1 Tag Library Releases

14 April 2002 - Jakarta Taglibs Version 1.0 Releases

The Jakarta-Taglibs project has released version 1.0 of the 
following JSP 1.1 Tag Libraries: 

Application 
DateTime 
Mailer 
Page 
Random 
Regexp 
Request 
Response 
Session 
XSL 

Binary distributions for these releases are available at

http://jakarta.apache.org/builds/jakarta-taglibs/releases/

The Jakarta-Taglibs Project
Permalink | Reply | 0 comments |
headers
Ceki Gülcü | 18 Apr 2002 15:00
Picon
Gravatar

log4j 1.2rc1 now available

Hi everyone,

In addition to many performance improvements, bug fixes, and other
small enhancements, log4j 1.2 adds JMX support, Mapped Diagnostic
Contexts, JDBC logging, graphical log viewer (chainsaw), and buffered
IO capability. One important change is the replacement of the Category
class with Logger class and the Priority class with the Level class in
order to facilitate migration from the JDK 1.4 logging API to log4j.

Version 1.2 is the 22nd major public release of log4j. All changes
except the removal of deprecated methods are backward compatible such
that log4j 1.2 can be considered a drop in replacement for log4j
1.1.3.  The only exception is the renaming of the CategoryFactory
class to LoggerFactory class such that subclasses of Category class to
be modified and recompiled. By the way, we strongly discourage casual
users from subclassing the Category or Logger classes.

The history file reads:

  - Version 1.2

  (rc1)

   - The ANT build script was modified to use jar files specified in
     the build.properties file instead of the CLASSPATH environment
     variable. The build.properties file depends on local paths and is
     supplied by the user. The build.properties.sample file is included
     in the distribution. The build.sh and build.bat scripts have
     been removed. This is the way many other jakarta projects build their
     projects. The jar files in the dist/lib directory were also removed
(Continue reading)

Permalink | Reply | 2 comments |
headers
Dmitri Plotnikov | 29 Apr 2002 14:55
Picon
Favicon

[ANNOUNCEMENT] JXPath 1.0 Beta 1 released

JXPath 1.0 Beta 1 has been released.  JXPath is a component of Jakarta
Commons.

JXPath is an interpreter of the XPath expression language. JXPath applies
XPath expressions to graphs of objects of all kinds: JavaBeans, Collections,
arrays, Maps, Servlet contexts, DOM etc, including mixtures thereof.  It is
highly extensible, allowing the developer to customize support for existing
object models and introduce support for new ones.

Home page:
http://jakarta.apache.org/commons/jxpath

Downloads (source and binaries):
http://jakarta.apache.org/builds/jakarta-commons/release/commons-jxpath/v1.0

Dmitri Plotnikov
dmitri <at> apache.org
Permalink | Reply | 0 comments |

Gmane