+1 GA
Markus Fischer
Am 25.04.2014 08:37, schrieb Johannes Geppert:
+1
[ ] Leave at test build
[ ] Alpha
[ ] Beta
[X] General Availability (GA)
Johannes
#
web: http://www.jgeppert.com
twitter: http://twitter.com/jogep
2014-04-24 23:13 GMT+02
+1
[ ] Leave at test build
[ ] Alpha
[ ] Beta
[X] General Availability (GA)
Johannes
#
web: http://www.jgeppert.com
twitter: http://twitter.com/jogep
2014-04-24 23:13 GMT+02:00 Lukasz Lenart :
> The Struts 2.3.16.2 test build is now available.
+1 GA
Thanks Lukasz!
Am 24.04.14 23:13, schrieb Lukasz Lenart:
> The Struts 2.3.16.2 test build is now available. It includes the
> latest security patch which fixes two possible vulnerabilities:
> - Improves excluded params to avoid ClassLoader manipulation via
> ParametersInterceptor
> - Adds e
Github user dwaite commented on the pull request:
https://github.com/apache/struts/pull/10#issuecomment-41335732
Changed from #9 to be based on develop
---
If your project is set up for it, you can reply to this email and have your
reply appear on GitHub as well. If your project does
Github user dwaite commented on the pull request:
https://github.com/apache/struts/pull/9#issuecomment-41335767
Closed as #10 is based on develop branch
---
If your project is set up for it, you can reply to this email and have your
reply appear on GitHub as well. If your project does
Github user dwaite closed the pull request at:
https://github.com/apache/struts/pull/9
---
If your project is set up for it, you can reply to this email and have your
reply appear on GitHub as well. If your project does not have this feature
enabled and wishes so, or if the feature is enable
GitHub user dwaite opened a pull request:
https://github.com/apache/struts/pull/10
Change Servlet Redirect to support absolute URLs with parameters and anchors
Reported as [WW-4330](https://issues.apache.org/jira/browse/WW-4330)
You can merge this pull request into a Git repository
The Struts 2.3.16.2 test build is now available. It includes the
latest security patch which fixes two possible vulnerabilities:
- Improves excluded params to avoid ClassLoader manipulation via
ParametersInterceptor
- Adds excluded params to CookieInterceptor to avoid ClassLoader
manipulation when
Github user lukaszlenart commented on the pull request:
https://github.com/apache/struts/pull/9#issuecomment-41319238
Can you open it against `develop` branch?
---
If your project is set up for it, you can reply to this email and have your
reply appear on GitHub as well. If your proje
GitHub user dwaite opened a pull request:
https://github.com/apache/struts/pull/9
Change Servlet Redirect to support absolute URLs with parameters and anchors
Reported as [WW-4330](https://issues.apache.org/jira/browse/WW-4330)
You can merge this pull request into a Git repository b
In Struts 2.3.16.1, an issue with ClassLoader manipulation via request
parameters was supposed to be resolved. Unfortunately, the correction
wasn't sufficient.
A security fix release fully addressing this issue is in preparation and
will be released as soon as possible.
Once the release is availa
11 matches
Mail list logo
