Update documentation for 1.4.19.

x-stream · Dec 28, 2022 · 04fa2fa · 04fa2fa
1 parent c0c14d0
commit 04fa2fa
Show file tree

Hide file tree

Showing 4 changed files with 28 additions and 31 deletions.
diff --git a/xstream-distribution/src/content/changes.html b/xstream-distribution/src/content/changes.html
@@ -1,7 +1,7 @@
 <html>
 <!--
  Copyright (C) 2005, 2006 Joe Walnes.
- Copyright (C) 2006, 2007, 2008, 2009, 2010, 2011, 2012, 2013, 2014, 2015, 2016, 2017, 2018, 2019, 2020, 2021 XStream committers.
+ Copyright (C) 2006, 2007, 2008, 2009, 2010, 2011, 2012, 2013, 2014, 2015, 2016, 2017, 2018, 2019, 2020, 2021, 2022 XStream committers.
  All rights reserved.
  
  The software in this package is published under the terms of the BSD
@@ -108,9 +108,9 @@ <h1 id="upcoming-1.4.x">Upcoming 1.4.x maintenance release</h1>
 	<p>Not yet released.</p>
 -->
 
-	<h1 id="upcoming-1.4.x">Upcoming 1.4.x maintenance release</h1>
+	<h1 id="1.4.19">1.4.19</h1>
 
-	<p>Not yet released.</p>
+	<p>Released January 29, 2022.</p>
 
 	<p class="highlight">This maintenance release addresses the security vulnerability
 	<a href="CVE-2021-43859.html">CVE-2021-43859</a>, when unmarshalling highly recursive collections or maps causing a

diff --git a/xstream-distribution/src/content/download.html b/xstream-distribution/src/content/download.html
@@ -1,7 +1,7 @@
 <html>
 <!--
  Copyright (C) 2005, 2006 Joe Walnes.
- Copyright (C) 2006, 2007, 2008, 2009, 2010, 2011, 2012, 2013, 2015, 2016, 2017, 2018, 2019, 2020, 2021 XStream committers.
+ Copyright (C) 2006, 2007, 2008, 2009, 2010, 2011, 2012, 2013, 2015, 2016, 2017, 2018, 2019, 2020, 2021, 2022 XStream committers.
  All rights reserved.
  
  The software in this package is published under the terms of the BSD
@@ -18,18 +18,18 @@
 
     <p><a href="versioning.html">About XStream version numbers...</a></p>
 
-    <h1 id="stable">Stable Version: <span class="version">1.4.18</span></h1>
+    <h1 id="stable">Stable Version: <span class="version">1.4.19</span></h1>
 
     <ul>
-      <li><b><a href="https://repo1.maven.org/maven2/com/thoughtworks/xstream/xstream-distribution/1.4.18/xstream-distribution-1.4.18-bin.zip">Binary distribution:</a></b>
+      <li><b><a href="https://repo1.maven.org/maven2/com/thoughtworks/xstream/xstream-distribution/1.4.19/xstream-distribution-1.4.19-bin.zip">Binary distribution:</a></b>
       Contains the XStream jar files, the Hibernate and Benchmark modules and all the dependencies.</li>
-      <li><b><a href="https://repo1.maven.org/maven2/com/thoughtworks/xstream/xstream-distribution/1.4.18/xstream-distribution-1.4.18-src.zip">Source distribution:</a></b>
+      <li><b><a href="https://repo1.maven.org/maven2/com/thoughtworks/xstream/xstream-distribution/1.4.19/xstream-distribution-1.4.19-src.zip">Source distribution:</a></b>
       Contains the complete XStream project as if checked out from the Subversion version tag.</li>
-      <li><b><a href="https://repo1.maven.org/maven2/com/thoughtworks/xstream/xstream/1.4.18/xstream-1.4.18.jar">XStream Core only:</a>
+      <li><b><a href="https://repo1.maven.org/maven2/com/thoughtworks/xstream/xstream/1.4.19/xstream-1.4.19.jar">XStream Core only:</a>
       The xstream.jar only as it is downloaded automatically when it is referenced as Maven dependency.</b></li>
-      <li><b><a href="https://repo1.maven.org/maven2/com/thoughtworks/xstream/xstream-hibernate/1.4.18/xstream-hibernate-1.4.18.jar">XStream Hibernate module:</a></b>
+      <li><b><a href="https://repo1.maven.org/maven2/com/thoughtworks/xstream/xstream-hibernate/1.4.19/xstream-hibernate-1.4.19.jar">XStream Hibernate module:</a></b>
       The xstream-hibernate.jar as it is downloaded automatically when it is referenced as Maven dependency.</li>
-      <li><b><a href="https://repo1.maven.org/maven2/com/thoughtworks/xstream/xstream-jmh/1.4.18/xstream-jmh-1.4.18-app.zip">XStream JMH module:</a></b>
+      <li><b><a href="https://repo1.maven.org/maven2/com/thoughtworks/xstream/xstream-jmh/1.4.19/xstream-jmh-1.4.19-app.zip">XStream JMH module:</a></b>
       The xstream-jmh-app.zip as standalone application with start scripts and all required libraries.</li>
     </ul>
 
@@ -41,7 +41,7 @@ <h1 id="maven">Maven Central Repository</h1>
     <div class="Source XML"><pre>&lt;dependency&gt;
   &lt;groupId&gt;com.thoughtworks.xstream&lt;/groupId&gt;
   &lt;artifactId&gt;xstream&lt;/artifactId&gt;
-  &lt;version&gt;1.4.18&lt;/version&gt;
+  &lt;version&gt;1.4.19&lt;/version&gt;
 &lt;/dependency&gt;</pre></div>
 
     <h1 id="previous-releases">Previous Releases</h1>

diff --git a/xstream-distribution/src/content/index.html b/xstream-distribution/src/content/index.html
@@ -1,7 +1,7 @@
 <html>
 <!--
  Copyright (C) 2005, 2006 Joe Walnes.
- Copyright (C) 2006, 2007, 2008, 2011, 2012, 2013, 2014, 2015, 2016, 2017, 2018, 2020, 2021 XStream committers.
+ Copyright (C) 2006, 2007, 2008, 2011, 2012, 2013, 2014, 2015, 2016, 2017, 2018, 2020, 2021, 2022 XStream committers.
  All rights reserved.
  
  The software in this package is published under the terms of the BSD
@@ -73,24 +73,11 @@ <h1 id="getting-started">Getting Started</h1>
 
     <h1 id="news">Latest News</h1>
 
-    <h2 id="release"><b>August 22, 2021</b> XStream 1.4.18 released</h2>
-
-	<p class="highlight">This maintenance release addresses the security vulnerabilities
-	<a href="CVE-2021-39139.html">CVE-2021-39139</a>,
-	<a href="CVE-2021-39140.html">CVE-2021-39140</a>,
-	<a href="CVE-2021-39141.html">CVE-2021-39141</a>,
-	<a href="CVE-2021-39144.html">CVE-2021-39144</a>,
-	<a href="CVE-2021-39145.html">CVE-2021-39145</a>,
-	<a href="CVE-2021-39146.html">CVE-2021-39146</a>,
-	<a href="CVE-2021-39147.html">CVE-2021-39147</a>,
-	<a href="CVE-2021-39148.html">CVE-2021-39148</a>,
-	<a href="CVE-2021-39149.html">CVE-2021-39149</a>,
-	<a href="CVE-2021-39150.html">CVE-2021-39150</a>,
-	<a href="CVE-2021-39151.html">CVE-2021-39151</a>,
-	<a href="CVE-2021-39152.html">CVE-2021-39152</a>,
-	<a href="CVE-2021-39153.html">CVE-2021-39153</a>, and
-	<a href="CVE-2021-39154.html">CVE-2021-39154</a>, when unmarshalling with an XStream instance using the default
-	blacklist of an uninitialized security framework.  XStream is therefore now using a whitelist by default.</p>
+    <h2 id="1.4.19"><b>January 29, 2022</b> XStream 1.4.19 released</h2>
+
+	<p class="highlight">This maintenance release addresses the security vulnerability
+	<a href="CVE-2021-43859.html">CVE-2021-43859</a>, when unmarshalling highly recursive collections or maps causing a
+	Denial of Service.</p>
 
 	<p>View the complete <a href="changes.html">change log</a> and <a href="download.html">download</a>.</p>
 

diff --git a/xstream-distribution/src/content/news.html b/xstream-distribution/src/content/news.html
@@ -1,7 +1,7 @@
 <html>
 <!--
  Copyright (C) 2005, 2006 Joe Walnes.
- Copyright (C) 2006, 2007, 2008, 2009, 2011, 2012, 2013, 2014, 2015, 2016, 2017, 2018, 2020, 2021 XStream committers.
+ Copyright (C) 2006, 2007, 2008, 2009, 2011, 2012, 2013, 2014, 2015, 2016, 2017, 2018, 2020, 2021, 2022 XStream committers.
  All rights reserved.
  
  The software in this package is published under the terms of the BSD
@@ -16,6 +16,16 @@
 
   <body>
 
+    <h2 id="1.4.19"><b>January 29, 2022</b> XStream 1.4.19 released</h2>
+
+	<p class="highlight">This maintenance release addresses the security vulnerability
+	<a href="CVE-2021-43859.html">CVE-2021-43859</a>, when unmarshalling highly recursive collections or maps causing a
+	Denial of Service.</p>
+
+	<p>View the complete <a href="changes.html">change log</a> and <a href="download.html">download</a>.</p>
+
+	<p>Note, the next major release 1.5 will require Java 8.</p>
+
     <h2 id="1.4.18"><b>August 22, 2021</b> XStream 1.4.18 released</h2>
 
 	<p class="highlight">This maintenance release addresses the security vulnerabilities