-
Notifications
You must be signed in to change notification settings - Fork 215
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
added release notes for bugfix releases 2.1.3 and 2.2.1
Signed-off-by: Thomas Jaeckle <thomas.jaeckle@bosch.io>
- Loading branch information
Showing
3 changed files
with
68 additions
and
0 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
25 changes: 25 additions & 0 deletions
25
documentation/src/main/resources/pages/ditto/release_notes_213.md
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,25 @@ | ||
--- | ||
title: Release notes 2.1.3 | ||
tags: [release_notes] | ||
published: true | ||
keywords: release notes, announcements, changelog | ||
summary: "Version 2.1.3 of Eclipse Ditto, released on 15.12.2021" | ||
permalink: release_notes_213.html | ||
--- | ||
|
||
This is a bugfix release, no new features since [2.1.2](release_notes_212.html) were added. | ||
|
||
## Changelog | ||
|
||
Compared to the latest release [2.1.2](release_notes_212.html), the following bugfixes were added. | ||
|
||
### Bugfixes | ||
|
||
This is a complete list of the | ||
[merged pull requests](https://github.com/eclipse/ditto/pulls?q=is%3Apr+milestone%3A2.1.3), including the fixed bugs. | ||
|
||
#### [Update logback to 1.2.8 due to "possibility of vulnerability"](https://github.com/eclipse/ditto/pull/1253) | ||
|
||
The reported [LOGBACK-1591](https://jira.qos.ch/browse/LOGBACK-1591) reports a "Possibility of vulnerability" with | ||
a medium severity, see also the CVE originally created for Log4j 1.2 (from which logback is a fork): | ||
[CVE-2021-4104](https://nvd.nist.gov/vuln/detail/CVE-2021-4104). |
37 changes: 37 additions & 0 deletions
37
documentation/src/main/resources/pages/ditto/release_notes_221.md
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,37 @@ | ||
--- | ||
title: Release notes 2.2.1 | ||
tags: [release_notes] | ||
published: true | ||
keywords: release notes, announcements, changelog | ||
summary: "Version 2.2.1 of Eclipse Ditto, released on 15.12.2021" | ||
permalink: release_notes_221.html | ||
--- | ||
|
||
This is a bugfix release, no new features since [2.2.0](release_notes_220.html) were added. | ||
|
||
## Changelog | ||
|
||
Compared to the latest release [2.2.0](release_notes_220.html), the following bugfixes were added. | ||
|
||
### Bugfixes | ||
|
||
This is a complete list of the | ||
[merged pull requests](https://github.com/eclipse/ditto/pulls?q=is%3Apr+milestone%3A2.2.0), including the fixed bugs. | ||
|
||
#### [Update logback to 1.2.8 due to "possibility of vulnerability"](https://github.com/eclipse/ditto/pull/1253) | ||
|
||
The reported [LOGBACK-1591](https://jira.qos.ch/browse/LOGBACK-1591) reports a "Possibility of vulnerability" with | ||
a medium severity, see also the CVE originally created for Log4j 1.2 (from which logback is a fork): | ||
[CVE-2021-4104](https://nvd.nist.gov/vuln/detail/CVE-2021-4104). | ||
|
||
#### [Switch to ByteSerializer and ByteDeserializer for Kafka Consumer and Publisher](https://github.com/eclipse/ditto/pull/1241) | ||
|
||
With Ditto 2.2.0, when consuming binary messages from Apache Kafka, the charset was not considered correctly and | ||
therefore binary payload (e.g. protobuf messages) were not consumed correctly. | ||
That was fixed by using the binary deserializer. | ||
|
||
#### [Also disable hostname verification when HTTP connection wants to ignore SSL](https://github.com/eclipse/ditto/pull/1243) | ||
|
||
For [managed HTTP connections](connectivity-protocol-bindings-http.html) for which `validateCertificates` was disabled, | ||
single HTTP interactions when publishing messages were still using certificate validation. | ||
This has been fixed. |