Apache Santuario
- Home
- Download
- Security Advisories
- FAQ
- Team
- Contributing
- Mailing Lists
- Issue Tracking
- History
- Old News
Apache XML Security for Java
- Index
- Download
- Release Notes
- FAQ
- API
- Interoperability
...
...
...
The Apache Santuario™ project is aimed at providing implementation of the primary security standards for XML:
Two libraries are currently available.
Version 2.1.4 of the Apache XML Security for Java library has been released.
This release contains a fix for a security advisory - CVE-2019-12400: Apache Santuario potentially loads XML parsing code from an untrusted source. Please see the security advisories page for more information.
Please see the release notes for more information.
Version 2.1.3 of the Apache XML Security for Java library has been released.
Please see the release notes for more information.
Version 2.0.2 of the Apache XML Security for C++ has been released.
This patch corrects a bug that can cause crashes in upstream applications. It is similar to, but not the same as, the one that was patched in V2.0.1, and resulted from further review of the code by the project that contributes all of the current manpower to the project. Appreciation is extended to the Shibboleth Project team for this review.
Version 2.0.1 of the Apache XML Security for C++ has been released.
This patch corrects a bug that can cause crashes in upstream applications.
Version 2.1.2 of the Apache XML Security for Java library has been released.
Please see the release notes for more information.
Version 2.0.0 of the Apache XML Security for C++ has been released.
Please see the release notes for basic information on bugs addressed. As a major upgrade, this release includes a range of relative minor, but visible, changes to the API that are not explicitly noted there. There are no features of significance added in this version, merely some refactoring and removal of deprecated APIs.
See here for old news.