czw., 7 lut 2019 o 09:00 Apache Jenkins Server
<jenk...@builds.apache.org> napisał(a):
> One or more dependencies were identified with known vulnerabilities in Struts 
> 2 Portlet Tiles Plugin:
>
> tiles-ognl-3.0.8.jar (cpe:/a:ognl_project:ognl:3.0.8, 
> cpe:/a:apache:tiles:3.0.8, org.apache.tiles:tiles-ognl:3.0.8) : CVE-2016-3093

Looks like we have an issue. Tiles was moved to addict and it isn't
actively supported anymore. I thought about preparing a PR to fix
this.


Regards
--
Łukasz
+ 48 606 323 122 http://www.lenart.org.pl/

---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscr...@struts.apache.org
For additional commands, e-mail: dev-h...@struts.apache.org

Reply via email to