The Liberty-for-Java Buildpack v3.44 Now Includes Liberty Runtime 20.0.0.5.
This buildpack contains two production versions of Liberty—a default version that remains constant for approximately three months and the latest version as an alternate.
In this new buildpack, the default version is 20.0.0.3 and the alternate version is 20.0.0.5. To use the alternate version of Liberty, follow these instructions.
An existing application will not be affected by the new buildpack until you redeploy or restage it. After redeployment, existing applications should continue to run “as is” without any additional changes. New applications will automatically use the new buildpack.
This buildpack contains fixes for the following security vulnerability: Websphere Application Server Liberty is vulnerable to Cross-site Scripting (CVE-2020-4303, CVE-2020-4304)