GeoServer Blog
FOSS4G 2018 GeoServer Developers Workshop
Thanks to everyone who attended today’s foss4g developer workshop, here are the slides and resources used:
-
GeoServer Developers Workshop (Google Slides)
GeoServer 2.12.5 released
We are happy to announce the release of GeoServer 2.12.5. Downloads are available (zip, war, and exe) along with docs and extensions.
This is the last maintenance release for the 2.12.x series, so we recommend users to plan an upgrade to 2.13.x or to the upcoming 2.14.x series. This release is made in conjunction with GeoTools 18.5.
Highlights of this release are featured below, for more information please see the release notes (2.12.5, 2.12.4, 2.12.3,2.12.2, 2.12.1 | 2.12.0 | 2.12-RC1 | 2.12-beta). |
Improvements
-
ImageMosaic should work when the images have no CRS information
-
Upgrade Apache POI dependencies
-
Upgrade jasypt dependency
-
Upgrade json-lib dependency to 2.4
-
Upgrade bouncycastle provider to 1.60
Bug Fixes
-
NullPointerException during WMS request of layer group when caching is enabled
-
GeorectifyCoverage fails to handle paths with spaces
-
CSS translator does not support mark offset/anchors based on expressions (but SLD does)
-
GeoServerSecuredPage might not redirect to login page in some obscure cases after Wicket upgrade
Security updates
Please update your production instances of GeoServer to receive the latest security updates and fixes.
This release addresses several security vulnerabilities:
-
Prevent arbitrary code execution via Freemarker Template injection
-
XXE vulnerability in GeoTools XML Parser
-
XXE vulnerability in WPS Request builder
-
Various library upgrades (see above) from versions with known CVEs
Thanks to Steve Ikeoka, Kevin Smith, Brad Hards and Nuno Oliveira for providing fixes to these issues.
These fixes are also included in the 2.13.2 release.
If you encounter a security vulnerability in GeoServer, or any other open source software, please take care to report the issue in a responsible fashion.
About GeoServer 2.12 Series
Additional information on the 2.12 series:
-
State of GeoServer 2.12 (SlideShare)
-
GeoServer Feature Frenzy (SlideShare)
GeoServer 2.13.2 released
We are happy to announce the release of GeoServer 2.13.2. Downloads are available (zip, war, and exe) along with docs and extensions.
This is a stable release recommended for production use. This release is made in conjunction with GeoTools 19.2 and GeoWebCache 1.13.2.
Highlights of this release are featured below, for more information please see the release notes (2.13.2 | 2.13.1 | 2.13.0 | 2.13-RC1 | 2.13-beta). |
Improvements and Fixes
-
style editor map legend always includes legend
-
performance improvement for multi-band coverage time series
-
WMS 1.3.0 performance improvement for north/east axis order
-
Fix support of external graphics over http
Security updates
Please update your production instances of GeoServer to receive the latest security updates and fixes.
This release addresses several security vulnerabilities:
-
Prevent arbitrary code execution via Freemarker Template injection
-
XXE vulnerability in GeoTools XML Parser
-
XXE vulnerability in WPS Request builder
-
Various library upgrades (see above) from versions with known CVEs
Thanks to Steve Ikeoka, Kevin Smith, Brad Hards and Nuno Oliveira for providing fixes to these issues.
If you encounter a security vulnerability in GeoServer, or any other open source software, please take care to report the issue in a responsible fashion.
About GeoServer 2.13 Series
Additional information on the 2.13 series:
-
Isolated workspaces (User Guide)
-
Coverage views from heterogeneous bands (User Guide)
-
State of GeoServer 2.13 (slideshare)
-
See the GeoServer 2.13.0 released announcement for visual guide to new features
GeoServer 2.12.4 Release
We are happy to announce the release of GeoServer 2.12.4. Downloads are available (zip, war, and exe) along with docs and extensions.
This is a maintenance release and a recommend update production systems. This release is made in conjunction with GeoTools 18.4.
Highlights of this release are featured below, for more information please see the release notes (2.12.4, 2.12.3,2.12.2, 2.12.1 | 2.12.0 | 2.12-RC1 | 2.12-beta). |
Improvements
-
Add forceLabels=on in the style editor map legend to help users,
-
Remove language warnings during Windows setup compilation and remove ‘work’ folder when uninstalling on Windows
-
Move MongoDB community module to supported status
Bug Fixes
-
Response time of WMS 1.3.0 significantly higher than vs WMS 1.x.x on systems whose axis in north/east order
-
Exception with NULL values with AggregateProcess
-
Style with Interpolate function causes NullPointerException on GetLegendGraphic
-
WFS with startIndex doesn’t return some results
-
Vector identifying feature info uses an undocumented system variable to set the default search area
-
Removing extensions with own configuration bits may cause GeoServer not to start up anymore
-
Windows Installation issue - upgrading GeoServer results in corrupt data_dir
-
Class java.util.Map$Entry is not whitelisted for XML parsing.
-
Add WMS GetMap and GetFeatureInfo tests for App-Schema MongoDB integration
-
CatalogRepository cannot find a store by name, if the store has just been added
-
WCS 1.0.0 generates wrong links in GetCapabilities
-
CatalogRepository should return a null on store not found, instead it throws a RuntimeException
-
Layer page will only show up to 25 bands, regardless of the actual set of bands available
-
Undocumented GDAL 2.3.0 CSV output geometry column name change breaks WPSOgrTest
Security Updates
Please update your production instances of GeoServer to receive the latest security updates and fixes.
If you encounter a security vulnerability in GeoServer, or any other open source software, please take care to report the issue in a responsible fashion.
About GeoServer 2.12 Series
Additional information on the 2.12 series:
-
State of GeoServer 2.12 (SlideShare)
-
GeoServer Feature Frenzy (SlideShare)
GeoServer 2.13.1 Released
We are happy to announce the release of GeoServer 2.13.1. Downloads are available (zip, war, and exe) along with docs and extensions.
This is a stable release recommended for production use. This release is made in conjunction with GeoTools 19.1 and GeoWebCache 1.13.1.
Highlights of this release are featured below, for more information please see the release notes (2.13.1 | 2.13.0 | 2.13-RC1 | 2.13-beta): |
New Features and Improvements
-
MongoDB community module moved to extension
-
Support PNG/JPEG WPS Downloads
-
Allow self joining GetFeature without aliases
-
Add support for priority in control-flow bounded queues
-
Hibernate Monitoring extension moved to a community module
Bug Fixes
-
WCS 1.0.0 generates wrong links in GetCapabilities
-
WFS 2.0 capabilities report transaction support even if the service level is not configured as such
-
WPSResourceManager cleanup is not deleting temporary subfolders (only files)
-
GeoServer in CITE compliance mode fails to validate an empty LockFeature request
-
WMS 1.3 GetMap request significantly slower than WMS 1.1.0 since GeoServer 2.11.4
-
Import objects cannot be deleted when in COMPLETE state
-
Style with Interpolate function causes NullPointerException on GetLegendGraphic
-
Windows Installation issue - upgrading GeoServer results in corrupt data_dir
-
Windows Installer: Remove ‘work’ folder when uninstalling
Tutorials
- How to style layers using GeoServer and QGIS
- How to Publish a GeoTIFF file in GeoServer
- A Comprehensive Guide to Publishing a Shapefile in GeoServer
- GeoServer About & Status - A Practical Guide
- GeoServer installation methods on Windows
- Introducing GeoSpatial Techno with a Video Tutorial
- GeoServer Presentations on FOSS4G 2019