RE: Upgrade to Struts 2.2.1 - XWork 2.2.1 vs Xwork 2.2.0
Ok, good news. Thanks so much for the note. -Nate From: Gena Ganebnyi [mailto:gganeb...@nebulent.com] Sent: Sat 11/13/2010 2:36 PM To: Struts Users Mailing List Subject: Re: Upgrade to Struts 2.2.1 - XWork 2.2.1 vs Xwork 2.2.0 My Maven Eclipse pluing tells me that struts2-core-2.2.1 depends on xwork-core-2.2.1. On Sat, Nov 13, 2010 at 8:36 PM, Sarr, Nathan wrote: > Hello, > >I was wondering if someone could help me out with the Struts 2.2.1 > dependency list. It looks like struts 2.2.1 depends on XWork 2.1.6. > However the release notes for Strtus 2.2.1 recommend using XWork 2.2.0. I > couldn't find XWork 2.2.0 but could find XWork 2.2.1. > > Is it recommended to upgrade to XWork 2.2.1 and Ognl 3.0 to fix the > critical XWork vulnerability fixed in Stuts 2.2.1? > > Thanks in advance for the help. > -Nate > - To unsubscribe, e-mail: user-unsubscr...@struts.apache.org For additional commands, e-mail: user-h...@struts.apache.org
Re: Upgrade to Struts 2.2.1 - XWork 2.2.1 vs Xwork 2.2.0
My Maven Eclipse pluing tells me that struts2-core-2.2.1 depends on xwork-core-2.2.1. On Sat, Nov 13, 2010 at 8:36 PM, Sarr, Nathan wrote: > Hello, > >I was wondering if someone could help me out with the Struts 2.2.1 > dependency list. It looks like struts 2.2.1 depends on XWork 2.1.6. > However the release notes for Strtus 2.2.1 recommend using XWork 2.2.0. I > couldn't find XWork 2.2.0 but could find XWork 2.2.1. > > Is it recommended to upgrade to XWork 2.2.1 and Ognl 3.0 to fix the > critical XWork vulnerability fixed in Stuts 2.2.1? > > Thanks in advance for the help. > -Nate >
Upgrade to Struts 2.2.1 - XWork 2.2.1 vs Xwork 2.2.0
Hello, I was wondering if someone could help me out with the Struts 2.2.1 dependency list. It looks like struts 2.2.1 depends on XWork 2.1.6. However the release notes for Strtus 2.2.1 recommend using XWork 2.2.0. I couldn't find XWork 2.2.0 but could find XWork 2.2.1. Is it recommended to upgrade to XWork 2.2.1 and Ognl 3.0 to fix the critical XWork vulnerability fixed in Stuts 2.2.1? Thanks in advance for the help. -Nate