What's Changed
- CVE-2026-46495 OpenDJ Unauthenticated RCE via Java Deserialization in JMX RMI thanks @wodzen ❤️
- CVE-2026-42198 pgjdbc: Unbounded PBKDF2 iterations in SCRAM authentication allows CPU exhaustion DoS by @dependabot[bot] in #641
- [#648] slow
DN.valueOf/AVAnormalization for nested DN-syntax values by @vharseko in #649 thanks @anvo1115 ❤️ - chore: bump Bouncy Castle FIPS deps to latest 2.1.x patch releases by @Copilot in #637
- Fix grizzly log level is always FINE by @maximthomas in #639
- Fix shell script issues in opendj-docker/run.sh by @Copilot in #640
- Fix Windows CI: use ilammy/msvc-dev-cmd to set up MSVC env by @Copilot in #643
- Add native access JVM flag for Bouncy Castle FIPS on newer Java releases by @vharseko in #645
- Docker base DN entry creation opt-in and improves bootstrap LDIF loading resilience by @vharseko in #644
- Fix
BasicRequestsTest.testReadSelectPartialfor nesting-preserving field projection by @vharseko in #650 - Update org.openidentityplatform.commons to 3.1.1 by @vharseko in #652
- Fix JMX RMI connector startup failure introduced by CVE-2026-46495 hardening by @vharseko in #651
Full Changelog: 5.1.0...5.1.1