The Apache James developers are pleased to announce James server 3.7.6 release.

Early adopters can download it, any issue can be reported on our issue tracker.

The Apache James PMC would like to thanks all contributors who made this release possible!

Announcement

This release comprise minor bug fixes enhancing Apache James stability.

This release fixes the following security issues:

• CVE-2024-37358: Denial of service through the use of IMAP literals
• CVE-2024-45626: Denial of service through JMAP HTML to text conversion

Release changelog

The full changes included in this release can be seen in the CHANGELOG.