[
https://issues.apache.org/jira/browse/WW-4286?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13905555#comment-13905555
]
ASF subversion and git services commented on WW-4286:
-----------------------------------------------------
Commit 7d383d6d395cae318b505065df7dab9ce8c13fae in struts's branch
refs/heads/develop from [~lukaszlenart]
[ https://git-wip-us.apache.org/repos/asf?p=struts.git;h=7d383d6 ]
WW-4286 Upgrades commons-fileupload to version 1.3.1
> Upgrade commons-fileupload
> --------------------------
>
> Key: WW-4286
> URL: https://issues.apache.org/jira/browse/WW-4286
> Project: Struts 2
> Issue Type: Bug
> Components: Core Actions
> Affects Versions: 2.3.15.3, 2.3.16
> Reporter: Tom Briers
> Priority: Critical
> Fix For: 2.3.17
>
>
> You might already be aware of this but I did not find any issue yet. A
> security problem has been found in commons-fileupolad:
> http://mail-archives.apache.org/mod_mbox/www-announce/201402.mbox/%[email protected]%3E
> I know I can fix this easily in my pom.xml file but I think it is better that
> struts2 updates its dependency as well.
--
This message was sent by Atlassian JIRA
(v6.1.5#6160)
