Blog post for Jpackge Updates

i2p2www/blog/2022/4/21/Easy-Install-Updates.html

@@ -0,0 +1,29 @@
+===========================================
+{% trans -%}Jpackage Update for Java CVE-2022-21449{%- endtrans %}
+===========================================
+
+.. meta::
+   :author: idk
+   :date: 2022-04-21
+   :category: release
+   :excerpt: {% trans %}Jpackage bundles released with fixes for Java CVE-2022-21449{% endtrans %}
+
+{% trans -%}
+Update details
+{%- endtrans %}
+============================================
+
+{% trans -%}
+New I2P Easy-Install bundles have been generated using the latest release of the
+Java Virtual Machine which contains a fix for CVE-2022-21449
+"Psychic Signatures." It is recommended that users of the easy-install bundles
+update as soon as possible.
+{%- endtrans %}
+
+{% trans -%}
+The I2P router on Linux uses the Java Virtual Machine configured by the host
+system. Users on those platforms should downgrade to a stable Java version below
+Java 14 in order to mitigate the vulnerability until updates are released by
+the package maintainers. Other users using an external JVM should update as soon
+the JVM to a fixed version as soon as possible.
+{%- endtrans %}