Apache James Server 2.3.2 security vulnerability fixed
VU#988628: Apache James Server 2.3.2 security vulnerability fixed
Vendor: The Apache Software Foundation
Versions Affected: James Server 2.3.2
Description: Apache James Server 2.3.2 has security issue that can let a user execute arbitrary system command.
Mitigation: 2.3.2 users should upgrade to 220.127.116.11 to be downloaded from http://james.apache.org/download.cgi#Apache_James_Server
Apache James Server 3.0-beta3 is released
The Apache James project is happy to announce the release of version 3.0-beta3 of its modular mail server.
We thank all Users for their feedback and tests and we encourage anyone to download and discover this Milestone 3 release.
If you're interested in contributing to the James project, please subscribe to the James mailing lists.[Read More]
Apache James Mime4j 0.7 is released
The Apache James Project is happy to announce the release of version 0.7 of the Apache James Mime4j.
Mime4j is a flexible MIME parsing library written in Java. SAX, DOM and pull parsing styles are supported.
The 0.7 release brings another round of API enhancements, bug fixes and performance optimizations. A major effort has been put in code reorganization, separating parsing code from DOM manipulation code. Mime4J has been restructured into three separate modules: 'core', 'dom' and 'storage'. The 'core' package provides an event-driven SAX style parser that relies on a callback mechanism to report parsing events such as the start of an entity header the start of a body, etc. The 'dom' package contains base/abstract classes and interfaces for MIME-DOM manipulation aiming to provide the base for a full featured traversable DOM. Per default the Mime4J DOM builder stores content of individual body parts in memory. The 'storage' package provides support for more complex storage backends such on-disk storage systems, overflow on max limit, or encrypted storage through JSSE API.
Mime4j 0.7 improves support for headless messages, malformed separation between headers and body and adds support for "obsolete" rfc822 syntax (e.g: "Header<somespace>: " style). Parsing performance for quoted printable streams have been considerably improved. A "DecodeMonitor" object has been introduced in most code to define how to deal with malformed input (Lenient vs Strict behaviours). Mime4j 0.7 also provides LenientFieldParser as an alternative to DefaultFieldParser when a higher degree of tolerance to non-severe MIME field format violations is desired.
Download from http://james.apache.org/download.cgi#Apache_Mime4J
Apache James 3.0 M2 Released
The Java Apache Mail Enterprise Sever (a.k.a. Apache James) Project is happy to announce the release of version 3.0-M2 (Milestone 2) of the Apache James server.
This is the second milestone of the upcoming 3.0 release, which includes bug-fixes and improvements. All users of 3.0-M1 should upgrade ASAP.
We are still actively looking for eager, capable developers to contribute to James. If you're interesting in contributing to the James project, please subscribe to the James mailing lists.
Information about James can be found at the James web site at
You can grab the release here:http://james.apache.org/download.cgi#Apache_James_Server
An overview over the changes can be found here:
! Be aware this is a milestone so changes in the API are still possible. !
Apache James Team