release notes for 1.3.9
diff --git a/archiva-docs/src/site/apt/release-notes.apt b/archiva-docs/src/site/apt/release-notes.apt
index b02bb3e..7bac531 100644
--- a/archiva-docs/src/site/apt/release-notes.apt
+++ b/archiva-docs/src/site/apt/release-notes.apt
@@ -1,10 +1,10 @@
-----
- Release Notes for Archiva 1.3.8
+ Release Notes for Archiva 1.3.9
-----
-Release Notes for Archiva 1.3.8
+Release Notes for Archiva 1.3.9
- The Apache Archiva team would like to announce the release of Archiva 1.3.8. Archiva is {{{http://archiva.apache.org/download.html}
+ The Apache Archiva team would like to announce the release of Archiva 1.3.9. Archiva is {{{http://archiva.apache.org/download.html}
available for download from the web site}}.
Archiva is an application for managing one or more remote repositories, including administration, artifact handling, browsing and searching.
@@ -24,6 +24,12 @@
* Security Vulnerabilities
+ * CVE-2013-2251: Apache Archiva Remote Command Execution is present in
+ 1.3.7 and earlier
+
+ * CVE-2013-2187: Apache Archiva Cross-Site Scripting vulnerability is
+ present in 1.3.7 and earlier
+
* A remote code execution (CVE-2010-1870) vulnerability has been reported against 1.3.5
and earlier versions.
@@ -59,7 +65,16 @@
* Release Notes
- The Archiva 1.3.8 feature set can be seen in the {{{tour/index.html} feature tour}}.
+ The Archiva 1.3.9 feature set can be seen in the {{{tour/index.html} feature tour}}.
+
+* Changes in Archiva 1.3.9
+
+ Released: <<25 June 2014>>
+
+** Bug
+
+ * upgrade Struts to 2.3.16.3
+ * [MRM-1796] - support file uploads and downloads over 4G
* Changes in Archiva 1.3.8
diff --git a/archiva-docs/src/site/site.xml b/archiva-docs/src/site/site.xml
index 5f03808..4e2fe22 100644
--- a/archiva-docs/src/site/site.xml
+++ b/archiva-docs/src/site/site.xml
@@ -26,7 +26,7 @@
</bannerLeft>
<body>
<breadcrumbs>
- <item name="1.3.8" href="/index.html" />
+ <item name="1.3.9" href="/index.html" />
</breadcrumbs>
<menu name="Introduction">