Share on:
OpenAM 15.2.0 Released
What’s new
- CVE-2019-11358, CVE-2020-11023: Updated jQuery to 3.7.1
- CVE-2025-48976: Fixed Apache Commons FileUpload denial of service vulnerability via part headers
- CVE-2025-48924: Fixed Apache Commons Lang uncontrolled recursion vulnerability caused by long inputs
- CVE-2025-48734: Fixed Apache Commons improper access control vulnerability
- CVE-2018-8039: Fixed Apache CXF TLS hostname verification issue with com.sun.net.ssl.*
- Return Bad Request error if CORS fails
- Added root group permission to Docker $CATALINA_HOME directory
- Upgraded OpenDJ to 4.10.0
- Enhanced Docker integration tests with a separate OpenDJ instance
- Increased Chrome startup timeout to 60 seconds
- Migrated deployment from legacy OSSRH to Central Portal
- Migrated tests from fest-assert to AssertJ
Full changeset (more details)
Thanks for the contributions
1. Mike Lothian
2. Peter Major
4. Maxim Thomas