Re: [ANN] Apache Struts 2.3.35 GA with Security Fixes Release

czw., 23 sie 2018 o 08:01 Gokul Raj napisał(a): > Should we update dependancy jar or is that okay to update only struts core > jar? It is always a better idea to upgrade all the dependencies. Regards -- Łukasz + 48 606 323 122 http://www.lenart.org.pl/

Re: [ANN] Apache Struts 2.3.35 GA with Security Fixes Release

Should we update dependancy jar or is that okay to update only struts core jar? On Wed, 22 Aug 2018 at 13:05, Yasser Zamani wrote: > The Apache Struts group is pleased to announce that Struts 2.3.35 is > available as a “General Availability” release. The GA designation is > our highest quality g

RE: [ANN] Apache Struts 2.3.35 GA with Security Fixes Release

. -Message d'origine- De : Yasser Zamani De la part de Yasser Zamani Envoyé : mercredi 22 août 2018 17:55 À : Struts User Cc : FAGES, Amaury; Bonnerat Nicolas Objet : Re: [ANN] Apache Struts 2.3.35 GA with Security Fixes Release Hi there, thank you for posting, As far as I see, it shou

Re: [ANN] Apache Struts 2.3.35 GA with Security Fixes Release

Hi there, thank you for posting, As far as I see, it should be already available. For example see [1]. What is the repository URL you wish see Struts 2.3.35 there, please? Regards. [1] http://repo1.maven.org/maven2/org/apache/struts/struts2-core/2.3.35/ On 8/22/2018 6:37 PM, FAGES, Amaury wrot

RE: [ANN] Apache Struts 2.3.35 GA with Security Fixes Release

necessary. Capgemini encourages environmental awareness. -Message d'origine- De : Yasser Zamani De la part de Yasser Zamani Envoyé : mercredi 22 août 2018 09:35 À : Struts User; Struts Announcements; Apache Announce Objet : [ANN] Apache Struts 2.3.35 GA with Security Fixes Release The A

Re: [ANN] Apache Struts 2.3.35 GA with Security Fixes Release

On 8/22/2018 4:19 PM, Martin Gainty wrote: > Yasser > > which CVE or group of CVEs does this address? Thanks for your posting Martin, This addresses CVE-2018-11776 as I mentioned in it's S2-057's link and announced into user list at [1]. Regards. [1] https://lists.apache.org/thread.html/75981

Re: [ANN] Apache Struts 2.3.35 GA with Security Fixes Release

Yasser which CVE or group of CVEs does this address? From: Yasser Zamani on behalf of Yasser Zamani Sent: Wednesday, August 22, 2018 3:35 AM To: Struts User; Struts Announcements; Apache Announce Subject: [ANN] Apache Struts 2.3.35 GA with Security Fixes

[ANN] Apache Struts 2.3.35 GA with Security Fixes Release

The Apache Struts group is pleased to announce that Struts 2.3.35 is available as a “General Availability” release. The GA designation is our highest quality grade. In addition to critical overall proactive security improvements, this release addresses one potential security vulnerability: - Possi