;
> Thanks,
> Dario.
>
> -Original Message-
> From: Greg Huber [mailto:gregh3...@gmail.com]
> Sent: 22 June 2016 10:44
> To: Struts Developers List
> Subject: Re: [VOTE][FASTTRACK] Struts 2.3.29
>
> for
>
> value="%{#list.id.eventCategory}" /&g
ce there is no value attribute provided to the tag in either case, the
> tag just evaluates the name expression for you to retrieve the value.
>
> Thanks,
> Dario.
>
> -Original Message-
> From: Greg Huber [mailto:gregh3...@gmail.com]
> Sent: 22 June 2016 10:44
> T
to the tag in either case, the tag
just evaluates the name expression for you to retrieve the value.
Thanks,
Dario.
-Original Message-
From: Greg Huber [mailto:gregh3...@gmail.com]
Sent: 22 June 2016 10:44
To: Struts Developers List
Subject: Re: [VOTE][FASTTRACK] Struts 2.3.29
for
gards,
> Dario.
>
> -Original Message-
> From: Lukasz Lenart [mailto:lukaszlen...@apache.org]
> Sent: 22 June 2016 10:15
> To: Struts Developers List
> Subject: Re: [VOTE][FASTTRACK] Struts 2.3.29
>
> 2016-06-22 11:10 GMT+02:00 Greg Huber :
> > not really su
io.
>
> -Original Message-
> From: Lukasz Lenart [mailto:lukaszlen...@apache.org]
> Sent: 22 June 2016 10:15
> To: Struts Developers List
> Subject: Re: [VOTE][FASTTRACK] Struts 2.3.29
>
> 2016-06-22 11:10 GMT+02:00 Greg Huber :
> > not really sure on your examp
to be able to "fix" all
> of them with such a work-around in a reasonable time-frame.
>
> Regards,
> Dario.
>
> -Original Message-
> From: Lukasz Lenart [mailto:lukaszlen...@apache.org]
> Sent: 22 June 2016 10:15
> To: Struts Developers List
> Subjec
attribute to be able to "fix" all of them with such a
work-around in a reasonable time-frame.
Regards,
Dario.
-Original Message-
From: Lukasz Lenart [mailto:lukaszlen...@apache.org]
Sent: 22 June 2016 10:15
To: Struts Developers List
Subject: Re: [VOTE][FASTTRACK] Struts 2.3.29
2016-0
2016-06-22 11:10 GMT+02:00 Greg Huber :
> not really sure on your example, but this works, is this the same?
>
>
>
> .
> value="%{#list.description}" maxlength="60" size="60" />
> .
>
WoW! I'm impressed :)
Greg
can you post your answer here as well
https://issues.apache.org/jira/brows
not really sure on your example, but this works, is this the same?
.
.
On 22 June 2016 at 10:00, Lukasz Lenart wrote:
> 2016-06-22 10:56 GMT+02:00 Greg Huber :
> > If the style %{#entry.entryId} did not work it would completely break my
> > system? Which is working OK.
>
> It's a c
2016-06-22 10:56 GMT+02:00 Greg Huber :
> If the style %{#entry.entryId} did not work it would completely break my
> system? Which is working OK.
It's a case when you have a list and dynamically fetching elements
from this list, i.e.:
// given
String[] list = new String[]{"foo", "bar};
int index
If the style %{#entry.entryId} did not work it would completely break my
system? Which is working OK.
On 22 June 2016 at 09:47, Lukasz Lenart wrote:
> 2016-06-22 10:37 GMT+02:00 Greg Huber :
> > As there are web.xml, struts.xml and dtd changes for v2.5, testing prior
> > releases is problemat
2016-06-22 10:37 GMT+02:00 Greg Huber :
> As there are web.xml, struts.xml and dtd changes for v2.5, testing prior
> releases is problematic, so best to switch to the latest versions if
> upgrading. Also latest versions will get more much testing.
The problem is that the mentioned issue affects 2
; > Should 2.3.29 be recalled based on the regressions found for all Struts
> tag name attribute expressions?
> > See: https://issues.apache.org/jira/browse/WW-4641
> >
> > Regards,
> >
> > Dario dot Liberman at JavelinGroup dot com
> >
> > On 2016-06-1
the regressions found for all Struts tag
> name attribute expressions?
> See: https://issues.apache.org/jira/browse/WW-4641
>
> Regards,
>
> Dario dot Liberman at JavelinGroup dot com
>
> On 2016-06-14 08:07 (+0100), Lukasz Lenart wrote:
>> The Struts 2.3.29 test b
-1
Hi,
Should 2.3.29 be recalled based on the regressions found for all Struts tag
name attribute expressions?
See: https://issues.apache.org/jira/browse/WW-4641
Regards,
Dario dot Liberman at JavelinGroup dot com
On 2016-06-14 08:07 (+0100), Lukasz Lenart wrote:
> The Struts 2.3.29 t
Vote passed with result
+1 (binding) x3
Regards
--
Łukasz
+ 48 606 323 122 http://www.lenart.org.pl/
2016-06-14 9:07 GMT+02:00 Lukasz Lenart :
> The Struts 2.3.29 test build is now available. It includes the latest
> security patch which fixes few possible vulnerabilities:
> - Ac
2016-06-16 13:52 GMT+02:00 Greg Huber :
> [ ] Leave at test build
> [ ] Alpha
> [ ] Beta
> [x] General Availability (GA)
>
> +1 (b) ;)
Thanks!
--
Łukasz
+ 48 606 323 122 http://www.lenart.org.pl/
-
To unsubscribe, e-mail: dev-un
[ ] Leave at test build
[ ] Alpha
[ ] Beta
[x] General Availability (GA)
+1 (b) ;)
On 16 June 2016 at 12:39, Lukasz Lenart wrote:
> One more vote is needed :)
>
> 2016-06-14 9:07 GMT+02:00 Lukasz Lenart :
> > The Struts 2.3.29 test build is now available. It includes the late
One more vote is needed :)
2016-06-14 9:07 GMT+02:00 Lukasz Lenart :
> The Struts 2.3.29 test build is now available. It includes the latest
> security patch which fixes few possible vulnerabilities:
> - Action name clean up is error prone
> - Forced double OGNL evaluation, when eval
> [ ] Leave at test build
> [ ] Alpha
> [ ] Beta
> [X] General Availability (GA)
+1 binding
Johannes Geppert
#
web: http://www.jgeppert.com
twitter: http://twitter.com/jogep
2016-06-14 21:34 GMT-07:00 Lukasz Lenart :
> 2016-06-14 9:07 GMT+02:00
2016-06-14 9:07 GMT+02:00 Lukasz Lenart :
> [ ] Leave at test build
> [ ] Alpha
> [ ] Beta
> [X] General Availability (GA)
+1 binding
Regards
--
Łukasz
+ 48 606 323 122 http://www.lenart.org.pl/
-
To unsubscribe, e-mail: dev-u
The Struts 2.3.29 test build is now available. It includes the latest
security patch which fixes few possible vulnerabilities:
- Action name clean up is error prone
- Forced double OGNL evaluation, when evaluated on raw user input in
tag attributes, may lead to remote code execution (similar to
I'm going to start working on preparing another 2.3.x version, there
are 13 issues to fix but I'm not sure if all can be addressed in this
version.
https://issues.apache.org/jira/browse/WW/fixforversion/12335463/
Regards
--
Łukasz
+ 48 606 323 122 http://www.lenart.org.pl/
23 matches
Mail list logo
