Oxalis-AS4 6.6.0 Release
- Added eDEC Codelist version 8.8 support
- Bump vefa-peppol version to 3.6.0
- Bump cxf version to 3.5.8
- Bump Bouncycastle version to 1.78.1 to fix following vulnerabilities:
- Bouncy Castle crafted signature and public key can be used to trigger an infinite loop
- Bouncy Castle affected by timing side-channel for RSA key exchange ("The Marvin Attack")
- Bouncy Castle certificate parsing issues cause high CPU usage during parameter evaluation.
- Bouncy Castle Denial of Service (DoS)
- Bouncy Castle For Java LDAP injection vulnerability
- Bump commons-certvalidator to version 4.1.0
- Bump dnsjava to 3.5.3 version
- France Peppol certificate update
Full Changelog: v6.5.0...v6.6.0