Releases · FusionAuth/fusionauth-jwt · GitHub

29 Jan 17:53

robotdan

3.0.1

Changes in 3.0.1

Remove un-needed line return at the end of the PEM when encoding a PEM string.

Assets 3

29 Jan 17:54

robotdan

3.0.0

Changes in 3.0.0

This major version of fusionauth-jwt contains breaking changes if you're coming from 2.x.

Elliptic Support, ES256, ES384 and ES512
JWK Support
Some minor breakages
Upgraded Jackson from 2.9.6 to 2.9.8. This upgrade addresses CVE-2018-19360, CVE-2018-19361, CVE-2018-19362 and CVE-2018-1000873.

If you are unable to upgrade to 3.0.0, simply explicitly depend upon version 2.9.8 in your own application, this will be compatible with
this library.

See https://github.com/FasterXML/jackson/wiki/Jackson-Release-2.9.8
See https://nvd.nist.gov/vuln/detail/CVE-2018-19360
See https://nvd.nist.gov/vuln/detail/CVE-2018-19361
See https://nvd.nist.gov/vuln/detail/CVE-2018-19362
See https://nvd.nist.gov/vuln/detail/CVE-2018-1000873

Assets 3