Maven artifacts for 2.2.1.CR2 are available in jboss repository at
Marek Novotny píše v Po 09. 08. 2010 v 20:32 +0200:
Seam 2.2.1.CR2 is available for public.
This second candidate release of version 2.2.1 was aimed to bring
security fixes and also bug fixes found in previous CR1. This release is
important, because it fixes a security issue in parametrized JBoss
Expression Language (EL) expressions - CVE-2010-1871 and Seam team
thanks Meder Kydyraliev of the Google Security Team for responsibly
reporting this issue to JBoss.
Next security fix is in upgrade of Spring dependency from 2.5.6.SEC01 to
Instead of these security issue, we fixed 39 issues including some
Of course it
was mentioned as addition to the security issues, we fixed
39 issues ;-).
performance ones and also bugs with JBoss AS 6 M3/4 or documentation
fixes. More in Release notes are at
Distribution downloads are available at
Documentation for 2.2.1.CR2 is available at
What is missing? Uploading Seam maven artifacts, which is now stucked on
some infrastracture permision issues. I will inform about the
availability of them ASAP. And blogging about the release - I will wait
till maven repository contains seam 2.2.1.CR2 artifacts.
Seam Product Lead
Red Hat Czech s.r.o.
612 45 Brno
Office phone: +420 532 294 287, ext. 82-62 087
mobile: +420 608 509 230