 A few days ago, we linked to a poll running on the eclipse.org site asking users to help decide the name for the 2013 Eclipse simultaneous release. Eclipse community members have voted and the most popular suggested name, with nearly half the votes at 48%, is Kepler.
0 Comments
Apache Tomcat 7.0.25 has been released and is available for immediate download from http://tomcat.apache.org/download-70.cgi Mark Thomas notes on the Tomcat mailing lists: "The Apache Tomcat team announces the immediate availability of Apache Tomcat 7.0.25
This release includes numerous bug fixes and several new features compared to version 7.0.23. The notable new features include: * Align the Servlet 3.0 implementation with the changes defined in the first maintenance release (also known as Rev. A.). See the JCP documentation for a detailed list of changes. * Add support for connectors to automatically select a free port to bind to. This is useful when embedding and for testing. * Update to Commons Pool 1.5.7, Commons Daemon 1.0.8 and Eclipse JDT compiler 3.7.1. Please refer to the change log for the complete list of changes: http://tomcat.apache.org/tomcat-7.0-doc/changelog.html Note that this version has 4 zip binaries: a generic one and three bundled with Tomcat native binaries for Windows operating systems running on different CPU architectures. Downloads: http://tomcat.apache.org/download-70.cgi Migration guides from Apache Tomcat 5.5.x and 6.0.x: http://tomcat.apache.org/migration.html "  Today SpringSource, the makers of the Spring Framework are hosting 2 webinars entitled: "Modern Enterprise Java Architectures with Spring 3.1". "In its 3.1 generation, the Spring Framework presents itself as a versatile open source platform for Java-based application architectures on any kind of deployment platform. This presentation covers the key feature set in Spring 3.1, from environment profiles and Java-based application configuration to declarative caching and Servlet 3.0 support. Spring 3.1's capabilities will be discussed in the context of current trends such as cloud computing and HTML 5, influencing the way enterprise Java applications will be built in 2012 and beyond." The webinars are to be held at 3pm UK time for European audiences and at 1pm EST for North American audiences. Full details of the webinars can be found at:
A new Tomcat security issue has been reported that affects Tomcat versions 7.0.0 through 7.0.22, versions 6.0.0 through 6.0.33 and versions 5.5.0 through 5.5.34. According to the Tomcat mailing lists: "CVE-2012-0022 Apache Tomcat Denial of Service
Severity: Important Description: Analysis of the recent hash collision vulnerability identified unrelated inefficiencies with Apache Tomcat's handling of large numbers of parameters and parameter values. These inefficiencies could allow an attacker, via a specially crafted request, to cause large amounts of CPU to be used which in turn could create a denial of service. The issue was addressed by modifying the Tomcat parameter handling code to efficiently process large numbers of parameters and parameter values. Mitigation: Users of affected versions should apply one of the following mitigations: - Tomcat 7.0.x users should upgrade to 7.0.23 or later - Tomcat 6.0.x users should upgrade to 6.0.35 or later - Tomcat 5.5.x users should upgrade to 5.5.35 or later Credit: The inefficiencies in handling large numbers of parameters were identified by the Apache Tomcat security team. A new Tomcat security issue has been reported that affects Tomcat versions 7.0.0 through 7.0.21 and versions 6.0.30 through 6.0.33. According to the Tomcat mailing lists: "CVE-2011-3375 Apache Tomcat Information disclosure
Severity: Important Description: For performance reasons, information parsed from a request is often cached in two places: the internal request object and the internal processor object. These objects are not recycled at exactly the same time. When certain errors occur that needed to be added to the access log, the access logging process triggers the re-population of the request object after it has been recycled. However, the request object was not recycled before being used for the next request. That lead to information leakage (e.g. remote IP address, HTTP headers) from the previous request to the next request. The issue was resolved be ensuring that the request and response objects were recycled after being re-populated to generate the necessary access log entries. Mitigation: Users of affected versions should apply one of the following mitigations: - Tomcat 7.0.x users should upgrade to 7.0.22 or later - Tomcat 6.0.x users should upgrade to 6.0.35 or later Credit: The issue was initially reported via Apache Tomcat's public issue tracker with the potential security implications identified by the Apache Tomcat security team." To celebrate the release of JBoss AS7 Configuration, Deployment and Administration by Francesco Marchioni, Packt Publishing and Develop In Java are providing one competition winner with a free e-book of this title. To be in with a chance of winning, all you have to do is reply to this post leaving a comment stating why you'd like a copy of the book or what you you think you'll learn from reading it. The draw is open for four weeks until 12:00 GMT on 14th February 2012. What better Valentines Day gift could you give someone? For more information on the book, check out Packt Publishing's Web Site. Remember, all you need to do to be in with a chance of winning the e-book is to reply to this blog post. Good luck (and don't forget to leave your email address so we can contact the winner) !
A new community poll over on eclipse.org is asking readers to help decide the name of the 2013 annual release of Eclipse. Each year the Eclipse Foundation releases a new version of Eclipse - this year it was Eclipse Indigo. The 2013 release of Eclipse must start with the letter "K", and the suggestions for the poll are:
I know my favourite, what's yours? Head on over to eclipse.org to cast your vote. The poll will remain open until January 15.
Apache Commons Pool version 1.6 has been released. In the release notification, Gary Gregory states: "The Apache Commons team is pleased to announce the release of version 1.6 of Commons Pool. Commons Pool provides a general purpose object pooling API, an implementation toolkit and some pool implementations. Version 1.6 adds generics to, and is binary compatible with, version 1.5.7. Source and binary distributions are available for download from the Apache Commons Pool download site: http://commons.apache.org/pool/download_pool.cgi Please verify signatures using the KEYS file available at the above location when downloading the release. For more information on Apache Commons Pool, visit the Pool home page: http://commons.apache.org/pool/ Feedback, suggestions for improvement or bug reports are welcome via the "Mailing Lists" and "Issue Tracking" links here: Yesterday, Mark Fisher announced the release of Spring Integration version 2.1 "Spring Integration provides an extension of the Spring programming model to support the well-known Enterprise Integration Patterns. It enables lightweight messaging within Spring-based applications and supports integration with external systems via declarative adapters. Those adapters provide a higher-level of abstraction over Spring's support for remoting, messaging, and scheduling. Spring Integration's primary goal is to provide a simple model for building enterprise integration solutions while maintaining the separation of concerns that is essential for producing maintainable, testable code." Spring Integration 2.1 includes many new features and hundreds of resolved issues including:
A complete list of changes since version 2.0 can be found here. Spring Integration can be downloaded from here.
NetBeans IDE 7.1 has been released and is now available for download. Geertjan Wielenga states that NetBeans 7.1 "introduces support for JavaFX 2.0 by enabling the full compile/debug/profile development cycle for JavaFX 2.0 applications. The release also provides significant Swing GUI Builder enhancements, CSS3 support, and tools for visual debugging of Swing and JavaFX user interfaces. Additional highlights include Git support integrated into the IDE, new PHP debugging features, various JavaEE and Maven improvements, and more. " You can download NetBeans from it's download site as Java SE, Java EE, C/C++, PHP or everything bundles. You can read the Oracle Press Releses here.
| RSS Feed
ArchivesFebruary 2012 CategoriesAll
|
