Release Notes: This release includes JBossAOP 1.0 RC2 implementation, the 1.1 version of JBoss Distributed Cache, Hibernate deployer integration, Tomcat version updated to 5.0.28, and JGroups updated to version 2.2.6.
Release Notes: This release fixes a bug in 3.2.4 that broke HTTP session replication.
Release Notes: This is the first beta release of the upcoming 4.0.0 release. This is the first release based on the codebase that has been succesfully certified against the J2EE 1.4 TCK. This initial release candidate is being made availble as a preview of the J2EE 1.4 functionality.
Release Notes: Several performance improvements, a fix for a security vulnerability in JMS, a workaround to allow the server to run with Sun JDK 1.5 beta 2, and numerous other smaller fixes.
Release Notes: This version fixed a leak of the authenticated JAAS Subject back to the Tomcat thread pool. The Subject associated with the thread was not being cleared, but the the principal and credentials were. Although this did not affect authentication or authorization, it could cause a previously authenticated Subject to be seen in an unauthenticated context. Applications associating sensitive information with the Subject or basing security decisions on the Subject via custom integration with JBoss could have been affected by this leak.