The above release files should be verified using the PGP signatures and the
project release KEYS. See
for a description of using the PGP and KEYS files for
verification. A SHA512 checksum is also provided as
an alternative verification method.
Create the file /etc/yum.repos.d/apache-daffodil.repo with the following content:
Run the folllowing command:
This release is a patch on top of Release 3.2.0 to improve security and fix a major functional bug.
The Release Notes for 3.2.0
are still relevant to understand the features
and functionality in this 3.2.1 patch release.
This release fixes three security CVEs by updating dependency versions.
[DAFFODIL-2610] Update log4J dependency to fix CVE-2021-44228 and CVE-2021-45105