The proposed Apache Tomcat 9.0.65 release is now available for voting. The notable changes compared to 9.0.64 are:
- Implement support for repeatable builds. - Update the packaged version of the Tomcat Native Library to 1.2.35. This includes Windows binaries built with OpenSSL 1.1.1q. - Fix CVE-2022-34305, a low severity XSS vulnerability in the Form authentication example. Along with lots of other bug fixes and improvements. For full details, see the changelog: https://nightlies.apache.org/tomcat/tomcat-9.0.x/docs/changelog.html It can be obtained from: https://dist.apache.org/repos/dist/dev/tomcat/tomcat-9/v9.0.65/ The Maven staging repo is: https://repository.apache.org/content/repositories/orgapachetomcat-1384 The tag is: https://github.com/apache/tomcat/tree/9.0.65 c443b393281c7eee5d6a95977c4faeed28906bdf The proposed 9.0.65 release is: [ ] Broken - do not release [ ] Stable - go ahead and release as 9.0.65 (stable) Rémy --------------------------------------------------------------------- To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org For additional commands, e-mail: dev-h...@tomcat.apache.org
