<tr>
<td width="60" align="center" nowrap><strong><a
id="Jalview.2.11.1">2.11.1</a><a id="Jalview.2.11.1.5">.5</a><br />
- <em>22/06/2021</em></strong></td>
- <td align="left" valign="top"><em>Development</em>
+ <em>20/12/2021</em></strong></td>
+
+ <td align="left" valign="top"><em>Security</em>
+ <ul>
+ <li>
+ <!-- JAL-3933 -->Update library dependency: Log4j 2.16.0
+ (was log4j 1.2.x).
+ </ul> <em>Development</em>
<ul>
<li>Updated building instructions</li>
</ul></td>
notes</a> for this build.
</p>
<p>
- <strong>Jalview 2.11.1.4</strong>
+ <strong>Jalview 2.11.1.5</strong>
</p>
- <p>Jalview 2.11.1.4 is the fourth patch release in the 2.11.1
- series. One critical bug was fixed in this release - when Jalview
- would occasionally hang when viewing structures in Jmol. This release
- also introduces a number of new configuration options for disabling
- web service connections used by the Jalview Debian package.
- </p>
- <p>
+ <p>Jalview 2.11.1.5 is a critical patch release that updates one of
+ the open source components, log4j, that Jalview relies on. The update
+ addresses the widely reported log4shell security vunerability. It also
+ addresses an error in the occupancy calculation that occurs when
+ working with alignments of more than 32,000 sequences.</p>
+ <p>
For the full release notes, see <a
- href="releases.html#Jalview.2.11.1.4">the Jalview 2.11.1.4
+ href="releases.html#Jalview.2.11.1.5">the Jalview 2.11.1.5
release notes</a>.
</p>
- <p>
- <strong>Known Issues</strong>
- </p>
- <p>New known issues in this release affect recovery of CDS/Protein
- relationships from project files, and interactive selection of
- protein sequences from a tree built on linked nucleotide sequences.
- We will provide patches for these issues as soon as possible.</p>
- </ul>
</body>
</html>
git://source.jalview.org / jalview.git / commitdiff