The Apache Santuario project is aimed at providing implementation of the primary security standards for XML:
Two libraries are currently available.
Apache Santuario, Apache, and the Apache feather logo are trademarks of The Apache Software Foundation.
Version 1.7.3 of the Apache XML Security for C++ library has been released, fixing a number of bugs, including a major issue involving ECDSA signature generation.
Versions 2.0.3 and 1.5.8 of the Apache XML Security for Java library have been released. Security advisory CVE-2014-8152 has been issued for versions 2.0.0, 2.0.1 and 2.0.2 of the library.
Please see thefor more information.
Security advisory CVE-2013-2210 has been issued, affecting Apache XML-Security for C++ version 1.7.1. Version 1.7.2 of the Apache XML Security for C++ library has been released, addressing this issue.
Security advisory CVE-2013-2172 has been issued for the Apache XML Security for Java project. Versions 1.4.8 and 1.5.5 have been released, fixing this issue.
Version 1.7.1 of the Apache XML Security for C++ library has been released, addressing these issues.
See here for old news.