CAS 4.2.6 has been released.
Among other things, this release addresses a rather serious security issue where successfully exercising this vulnerability may allow an adversary to gain insight into the running CAS server.
If you have deployed **any version** of CAS 4.2.x, you **MUST** take action to upgrade. If you have deployed any **other** versions of CAS, disregard this issue.