Just in case anyone else runs into this same issue... The problem was that the newly fixed JSPs were accidentally being "overridden" by an overlay. So, the security fixes in 1.8.3 was not fully applied, since the DSpace was using an older version of a few JSP files.
The fix is to ensure your JSPs are upgraded properly, especially any that you have overlayed. In general, overlays are very useful in keeping your local customizations separate from "out-of-the-box" source code. However, your overlayed files are not auto-upgraded whenever you upgrade DSpace. So, you need to be careful to upgrade any files you've customized in your overlays (especially when new bug fixes or security patches are released). - Tim On 8/19/2013 8:15 AM, stuart.wood wrote: > Yes the JSPUI is still rendering the HTML.... > > if i view source i can see... > > My Dspace: > Wood > <p>hello</p> > Stuart > > > > > > > -- > View this message in context: > http://dspace.2283337.n4.nabble.com/Announcing-DSpace-1-8-3-Release-provides-a-JSPUI-security-patch-to-1-8-x-platform-tp4665927p4666675.html > Sent from the DSpace - Devel mailing list archive at Nabble.com. > > ------------------------------------------------------------------------------ > Get 100% visibility into Java/.NET code with AppDynamics Lite! > It's a free troubleshooting tool designed for production. > Get down to code-level detail for bottlenecks, with <2% overhead. > Download for free and get started troubleshooting in minutes. > http://pubads.g.doubleclick.net/gampad/clk?id=48897031&iu=/4140/ostg.clktrk > _______________________________________________ > Dspace-devel mailing list > [email protected] > https://lists.sourceforge.net/lists/listinfo/dspace-devel > ------------------------------------------------------------------------------ Get 100% visibility into Java/.NET code with AppDynamics Lite! It's a free troubleshooting tool designed for production. Get down to code-level detail for bottlenecks, with <2% overhead. Download for free and get started troubleshooting in minutes. http://pubads.g.doubleclick.net/gampad/clk?id=48897031&iu=/4140/ostg.clktrk _______________________________________________ Dspace-devel mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/dspace-devel
