[
https://issues.apache.org/jira/browse/FILEUPLOAD-279?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=16722825#comment-16722825
]
Bernd Eckenfels commented on FILEUPLOAD-279:
Snapshots are not released and therefore
[
https://issues.apache.org/jira/browse/FILEUPLOAD-279?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=16722712#comment-16722712
]
Rasmita Mahapatra commented on FILEUPLOAD-279:
--
Please confirm if this snapshot is safe
[
https://issues.apache.org/jira/browse/FILEUPLOAD-279?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=16712330#comment-16712330
]
Rasmita Mahapatra commented on FILEUPLOAD-279:
--
Please confirm, which build I can use,
[
https://issues.apache.org/jira/browse/FILEUPLOAD-279?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=16711584#comment-16711584
]
Gary Gregory commented on FILEUPLOAD-279:
-
FWIW: I published a new {{1.4-SNAPSHOT}} to
[
https://issues.apache.org/jira/browse/FILEUPLOAD-279?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=16711520#comment-16711520
]
Jochen Wiedmann commented on FILEUPLOAD-279:
Bernd,
indeed, the fix for master / 1.4
[
https://issues.apache.org/jira/browse/FILEUPLOAD-279?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=16711476#comment-16711476
]
Gilles commented on FILEUPLOAD-279:
---
bq. ASF bylaws makes it hard to offer snapshots
?
Jenkins
[
https://issues.apache.org/jira/browse/FILEUPLOAD-279?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=16711420#comment-16711420
]
Bernd Eckenfels commented on FILEUPLOAD-279:
ASF bylaws makes it hard to offer snapshots
[
https://issues.apache.org/jira/browse/FILEUPLOAD-279?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=16711417#comment-16711417
]
Gilles commented on FILEUPLOAD-279:
---
bq. AFAIK, we do not offer automated snapshot builds
Some
[
https://issues.apache.org/jira/browse/FILEUPLOAD-279?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=16711398#comment-16711398
]
Jochen Wiedmann commented on FILEUPLOAD-279:
Rasmita,
as I have no idea, who created
[
https://issues.apache.org/jira/browse/FILEUPLOAD-279?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=16711401#comment-16711401
]
Bernd Eckenfels commented on FILEUPLOAD-279:
[~joc...@apache.org] I dont think thats
[
https://issues.apache.org/jira/browse/FILEUPLOAD-279?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=16711376#comment-16711376
]
Bernd Eckenfels commented on FILEUPLOAD-279:
[~rasmita] it looks like the fix is missing
[
https://issues.apache.org/jira/browse/FILEUPLOAD-279?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=16710987#comment-16710987
]
Rasmita Mahapatra commented on FILEUPLOAD-279:
--
Is this bug fix is ported to 1.4
[
https://issues.apache.org/jira/browse/FILEUPLOAD-279?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=16706448#comment-16706448
]
Jochen Wiedmann commented on FILEUPLOAD-279:
Adam,
I do not feel responsible for
[
https://issues.apache.org/jira/browse/FILEUPLOAD-279?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=16706189#comment-16706189
]
Adam Pikulik commented on FILEUPLOAD-279:
-
Jochen,
Thank you for replying so quickly. I am
[
https://issues.apache.org/jira/browse/FILEUPLOAD-279?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=16706178#comment-16706178
]
Jochen Wiedmann commented on FILEUPLOAD-279:
*Exactly,* as is written in your quote, and
[
https://issues.apache.org/jira/browse/FILEUPLOAD-279?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=16706163#comment-16706163
]
Adam Pikulik commented on FILEUPLOAD-279:
-
Hello,
There is "Affected versions: 1.3.2"
[
https://issues.apache.org/jira/browse/FILEUPLOAD-279?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=16684763#comment-16684763
]
Jochen Wiedmann commented on FILEUPLOAD-279:
It is escapes me, why there is a discussion
[
https://issues.apache.org/jira/browse/FILEUPLOAD-279?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=16684646#comment-16684646
]
Bernd Eckenfels commented on FILEUPLOAD-279:
This is not (directly) related to Struts.
[
https://issues.apache.org/jira/browse/FILEUPLOAD-279?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=16684615#comment-16684615
]
Cyrus commented on FILEUPLOAD-279:
--
Do I need to upgrade my commons-fileupload-1.3.2.jar even if I'm
[
https://issues.apache.org/jira/browse/FILEUPLOAD-279?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=16677464#comment-16677464
]
jack commented on FILEUPLOAD-279:
-
If you can't upgrade, what things should you monitor to reduce the
[
https://issues.apache.org/jira/browse/FILEUPLOAD-279?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=16677377#comment-16677377
]
Bernd Eckenfels commented on FILEUPLOAD-279:
The „safe“ thing to do is, if you are in
[
https://issues.apache.org/jira/browse/FILEUPLOAD-279?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=16677267#comment-16677267
]
Matt Kempers commented on FILEUPLOAD-279:
-
What is the best way to find this vulnerability
[
https://issues.apache.org/jira/browse/FILEUPLOAD-279?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=16062216#comment-16062216
]
Bruno P. Kinoshita commented on FILEUPLOAD-279:
---
Updated the version in JIRA, with
[
https://issues.apache.org/jira/browse/FILEUPLOAD-279?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=16062007#comment-16062007
]
Mark Symons commented on FILEUPLOAD-279:
Thanks very much for the release. 1.3.3 is
[
https://issues.apache.org/jira/browse/FILEUPLOAD-279?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=16032000#comment-16032000
]
Gary Gregory commented on FILEUPLOAD-279:
-
I'll ping the ML...
> CVE-2016-131 - Apache
[
https://issues.apache.org/jira/browse/FILEUPLOAD-279?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=16031153#comment-16031153
]
Achim H. commented on FILEUPLOAD-279:
-
Please release the fix.
> CVE-2016-131 - Apache
[
https://issues.apache.org/jira/browse/FILEUPLOAD-279?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=15986143#comment-15986143
]
Pegasus commented on FILEUPLOAD-279:
Is there any fix solution available ? help ...
>
[
https://issues.apache.org/jira/browse/FILEUPLOAD-279?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=15964565#comment-15964565
]
Mark Symons commented on FILEUPLOAD-279:
Is there any info on when a solution might be
[
https://issues.apache.org/jira/browse/FILEUPLOAD-279?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=15812015#comment-15812015
]
Rick Oosterholt commented on FILEUPLOAD-279:
When searching for a fix for this bug, I've
[
https://issues.apache.org/jira/browse/FILEUPLOAD-279?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=15707799#comment-15707799
]
Naozumi Taromaru commented on FILEUPLOAD-279:
-
> However, what do you tell someone in the
[
https://issues.apache.org/jira/browse/FILEUPLOAD-279?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=15707286#comment-15707286
]
Chris Seieroe commented on FILEUPLOAD-279:
--
I understand the larger problem, and that's
[
https://issues.apache.org/jira/browse/FILEUPLOAD-279?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=15694839#comment-15694839
]
Naozumi Taromaru commented on FILEUPLOAD-279:
-
Chris, if an application deserializes data
[
https://issues.apache.org/jira/browse/FILEUPLOAD-279?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=15691568#comment-15691568
]
Henning Schmiedehausen commented on FILEUPLOAD-279:
---
you should also remove the
[
https://issues.apache.org/jira/browse/FILEUPLOAD-279?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=15667947#comment-15667947
]
Jochen Wiedmann commented on FILEUPLOAD-279:
Chris, we are preparing an alternative
[
https://issues.apache.org/jira/browse/FILEUPLOAD-279?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=15667888#comment-15667888
]
Chris Seieroe commented on FILEUPLOAD-279:
--
Are you saying it breaks backwards compatibility
[
https://issues.apache.org/jira/browse/FILEUPLOAD-279?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=15666372#comment-15666372
]
Mark Thomas commented on FILEUPLOAD-279:
-1 to back-porting since it breaks backwards
[
https://issues.apache.org/jira/browse/FILEUPLOAD-279?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=15665795#comment-15665795
]
Chris Seieroe commented on FILEUPLOAD-279:
--
Looking back at the patch, it's a lot larger than
[
https://issues.apache.org/jira/browse/FILEUPLOAD-279?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=15665725#comment-15665725
]
Gary Gregory commented on FILEUPLOAD-279:
-
Patches welcome!
> CVE-2016-131 - Apache
[
https://issues.apache.org/jira/browse/FILEUPLOAD-279?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=15665692#comment-15665692
]
Chris Seieroe commented on FILEUPLOAD-279:
--
I noticed that in the main branch, back in May,
39 matches
Mail list logo