pon., 25 cze 2018 o 09:37 Greg Huber napisał(a):
>
> It is a pretty fundamental plugin (for me), its really going move to
> attic? Maybe we should consider how to keep at least the jars up to date.
Not only for you but for many :( And not the plugin is going to be
deprecated but the the Tiles co
...Looks likely
http://struts.1045723.n5.nabble.com/template/NamlServlet.jtp?macro=user_nodes&user=158467
On 25 June 2018 at 08:17, Lukasz Lenart wrote:
> niedz., 24 cze 2018 o 12:02 Greg Huber napisał(a):
> > Sorry, a bit more info, I am replacing/removing commons-validator 1.6
> which
> > b
It is a pretty fundamental plugin (for me), its really going move to
attic? Maybe we should consider how to keep at least the jars up to date.
Cheers Greg
On 25 June 2018 at 08:17, Lukasz Lenart wrote:
> niedz., 24 cze 2018 o 12:02 Greg Huber napisał(a):
> > Sorry, a bit more info, I am repla
niedz., 24 cze 2018 o 12:02 Greg Huber napisał(a):
> Sorry, a bit more info, I am replacing/removing commons-validator 1.6 which
> brings beanutils 1.9.3, now checking the jars, it now reverts back to
> 1.8.0, This is the hierarchy reported using eclipse :
>
> struts2-tiles-plugin 2.5.16
> til
Looks like its already been done in 2.6-SNAPSHOT
update commons-beanutils dependency to version 1.9.3 Issue: WW-4926
On 24 June 2018 at 12:25, i...@flyingfischer.ch
wrote:
> 1++
>
> commons-beanutils-1.9.3.jar works here in production since ages.
>
> Markus
>
> Am 24.06.2018 um 11:37 schrieb Gr
1++
commons-beanutils-1.9.3.jar works here in production since ages.
Markus
Am 24.06.2018 um 11:37 schrieb Greg Huber:
> Should we bump commons-beanutils-1.8.0.jar to the latest 1.9.3?
>
> struts2-tiles-plugin
>
> Cheers Greg
>
---
Sorry, a bit more info, I am replacing/removing commons-validator 1.6 which
brings beanutils 1.9.3, now checking the jars, it now reverts back to
1.8.0, This is the hierarchy reported using eclipse :
struts2-tiles-plugin 2.5.16
tiles-core 3.0.7
commons-digester 2.0
commons-beanutils
Should we bump commons-beanutils-1.8.0.jar to the latest 1.9.3?
struts2-tiles-plugin
Cheers Greg
PM >>>
As confirmed in our last announcement, the Apache Struts 1 framework
in
all versions is affected by a ClassLoader manipulation vulnerability
(CVE-2014-0114) similar to a recently fixed vulnerability in Struts 2
(CVE-2014-0112, CVE-2014-0094) [1].
Thanks to the efforts of Alvar
As confirmed in our last announcement, the Apache Struts 1 framework in
all versions is affected by a ClassLoader manipulation vulnerability
(CVE-2014-0114) similar to a recently fixed vulnerability in Struts 2
(CVE-2014-0112, CVE-2014-0094) [1].
Thanks to the efforts of Alvaro Munoz and the HP
The Apache Struts project team confirms that Struts 1 in all versions is
affected by a ClassLoader manipulation vulnerability similar to a
recently fixed vulnerability in Struts 2 (CVE-2014-0112, CVE-2014-0094) [1].
This is a different underlying flaw. For future reference, please use
CVE-2014
11 matches
Mail list logo
