Apache Santuario
- Home
- Download
- Security Advisories
- FAQ
- Team
- Contributing
- Mailing Lists
- Issue Tracking
- History
- Old News
Apache XML Security for Java
- Index
- Download
- Release Notes
- FAQ
- API
- Interoperability
Versions 2.1.1 and 2.0.10 of the Apache XML Security for Java library have been released.
Please see the release notes for more information.
Versions 2.1.0 and 2.0.9 of the Apache XML Security for Java library have been released.
Please see the release notes for more information.
Version 2.0.5 of the Apache XML Security for Java library has been released.
Please see the release notes for more information.
Versions 2.0.4 of the Apache XML Security for Java library has been released.
Please see the release notes for more information.
Versions 2.0.3 and 1.5.8 of the Apache XML Security for Java library have been released. Security advisory CVE-2014-8152 has been issued for versions 2.0.0, 2.0.1 and 2.0.2 of the library.
Please see the release notes for more information.
Security advisory CVE-2013-2210 has been issued, affecting Apache XML-Security for C++ version 1.7.1. Version 1.7.2 of the Apache XML Security for C++ library has been released, addressing this issue.
Security advisory CVE-2013-2172 has been issued for the Apache XML Security for Java project. Versions 1.4.8 and 1.5.5 have been released, fixing this issue.
Security advisories CVE-2013-2153, CVE-2013-2154, CVE-2013-2155, and CVE-2013-2156, affecting Apache XML-Security for C++ versions prior to 1.7.1, have been issued.
Version 1.7.1 of the Apache XML Security for C++ library has been released, addressing these issues.
Versions 2.0.2 of the Apache XML Security for Java library has been released.
Please see the release notes for more information.
Versions 2.0.1 and 1.5.7 of the Apache XML Security for Java library has been released.
Please see the release notes for more information.
Version 2.0.0 of the Apache XML Security for Java library has been released.
Please see the release notes for more information.
Version 1.5.6 of the Apache XML Security for Java library has been released.
Please see the release notes for more information.
This release fixes a new security advisory CVE-2013-4517.
Security advisory CVE-2013-2172 has been issued for the Apache XML Security for Java project. Versions 1.4.8 and 1.5.5 have been released, fixing this issue.
The Apache Santuario team are pleased to announce the release of version 1.4.7 of the Apache XML Security for Java library. This release fixes a problem with a missing KeyInfo Element when multiple elements are encrypted, as well as a number of other issues.
Please see the release notes for more information.
Version 1.5.4 of the Apache XML Security for Java library has been released.
Please see the release notes for more information.
The Apache Santuario team are pleased to announce the release of version 1.7.0 of the Apache XML Security for C++ library. This release provides a few bug fixes and a partial implementation of XML Encryption 1.1 features, including AES-GCM encryption and some support for newer RSA-OAEP variants.
Version 1.5.3 of the Apache XML Security for Java library has been released. This release features support for new XML Signature 1.1 KeyInfo extensions. It also fixes a number of bugs including a problem when message sizes are greater than 512 MB.
Please see the release notes for more information.
Version 1.5.2 of the Apache XML Security for Java library has been released. The main feature of this release is that the default canonicalization algorithm for encryption has changed from inclusive with comments to a new canonicalization algorithm that preserves the physical representation of the element being encrypted. This change fixes a problem where an element might be decrypted to the wrong namespace.
Please see the release notes for more information.
The Apache Santuario team are pleased to announce the release of version 1.6.1 of the Apache XML Security for C++ library. This release provides bug fixes and addresses CVE-2011-2516.
Version 1.5.1 of the Apache XML Security for Java library has been released. This release fixes two important bugs - a bug in XMLSignatureInput when using a BufferedInputStream, as well as a bug which caused 1.5.0 to continue to require Xalan. It also contains some performance improvements for encryption and decryption.
Please see the release notes for more information.
Version 1.5.0 of the Apache XML Security for Java library has been released. This is a major new release and is not binary compatible with the 1.4.x releases.
Please see the release notes for more information.
The Apache Santuario team are pleased to announce the release of version 1.4.6 of the Apache XML Security for Java library. This release fixes a thread safety issue with XML Signature, a bug fix for the Canonical XML 1.1 algorithm, as well as a number of other bug fixes.
Please see the release notes for more information.
The Apache Santuario team are pleased to announce the release of version 1.4.5 of the Apache XML Security for Java library. This release fixes a thread safety issue in the ResourceResolver, and a regression in signature generation for the Canonical XML 1.1 algorithm, as well as a number of other bug fixes.
Please see the release notes for more information.
The Apache Santuario team are pleased to announce the release of version 1.6.0 of the Apache XML Security for C++ library. This release provides many bug fixes and a partial implementation of XML Signature 1.1 features, including ECDSA signatures.
The Apache Santuario team are pleased to announce the release of version 1.4.4 of the Apache XML Security for Java library. This release contains some enhancements to the resolver API's. It also fixes some longstanding issues with interned Strings, as well as a number of bug fixes.
Please see the release notes for more information.
The Apache Santuario team are pleased to announce the release of version 1.4.3 of the XML Security Java library. This release provides many bug fixes and a fix for the recently announced HMAC vulnerability in the XML Signature specification. You should upgrade to this release as soon as possible.
Please see the changelog for more information.
The Apache Santuario team are pleased to announce the release of version 1.5.1 of the XML Security C++ library. This release provides some bug fixes and a fix for the recently announced HMAC vulnerability in the XML Signature specification.
Please see the changelog for more information.
Version 1.5.0 of the XML Security C++ library has been released. This release provides more bug fixes, partial support for Inclusive Canonicalization 1.1, and support for the Xerces 3.x official release and 32/64-bit portability APIs.
Please see the changelog for more information.
Version 1.4.2 of the XML Security Java library has been released. This is mainly a bugfix release but also contains a few new enhancements including support for XML Canonicalization 1.1.
Please see the changelog for more information.
Version 1.4.1 of the XML Security Java library has been released. This is a bugfix release that contains a major bugfix to the canonicalization engine introduced in the 1.4 release. It is recommended that 1.4 users upgrade to the new version as signatures containing non ascii characters created by this library are not according to the standard, and will be only validated by 1.4 library.
Please see the changelog for more information.
The Apache Santuario team are proud to announce the release of version 1.4.0 of the XML Security C++ library. This release provides more bug fixes, improved automake and RPM packaging, and better error reporting.
This version also provides initial support for Xerces 3.0. If you are building for the 3.0 library under Windows, you will need to change the Xerces library (in link includes) to xerces_3?.lib.
Please see the changelog for more information.
Version 1.3.1 of the XML Security C++ library has been released. This release contains some minor bug fixes and initial updates for Xerces 3.0. It also provides a new automake based build on *NIX. See the changelog for more information.
Version 1.4 of the XML Security Java library has been released. The main changes for this version are:
Refer to the changelog for more information.
Version 1.3 of the XML Security C++ library has been released. This release features performance improvements and a complete message set for XKMS. See the changelog for more information.
Version 1.3 of the XML Security Java library has been released. This version provides :
See the changelog for more information.
Version 1.2.1 of the XML Security C++ library has been released. This minor release fixes versioning problems in the Windows project files. See the changelog for more information.
Version 1.2 of the XML Security C++ library has been released. This version includes a number of bug fixes, together with a beta release of code to process and generate XKMS messages. See the changelog for more information.
Version 1.2.1 of the XML Security Java library has been released. This is a bugfix version, for more detail information see the changelog.
Version 1.2 of the XML Security Java library has been released. This version provides :
Version 1.1 of the XML Security Java library has been released. This version provides :
Version 1.1 of the XML Security C++ library has been released. Supporting Xerces 2.5, 2.4 and 2.3 together with Xalan 1.6 and 1.7, this version provides :
Version 1.00 of the XML Security C++ library is now released. This is the first stable release of the library. Functionality is still fairly basic, but all mandatory parts of the the DSIG standard are implemented.
This version supports Xerces 2.2 and 2.3 and Xalan 1.6.
The Beta 0.20 of the XML Security C++ library has now been released. Features: