FYI ---------- Forwarded message --------- Od: Lukasz Lenart <lukaszlen...@apache.org> Date: czw., 7 gru 2023 o 08:30 Subject: [ANN] Apache Struts 6.3.0.2 & 2.5.33 To: <announceme...@struts.apache.org> Cc: <annou...@apache.org>
The Apache Struts group is pleased to announce that Apache Struts versions 6.3.0.2 & 2.5.33 are available as “General Availability” releases. The GA designation is our highest quality grade. The Apache Struts is an elegant, extensible framework for creating enterprise-ready Java web applications. The framework has been designed to streamline the full development cycle, from building, to deploying, to maintaining applications over time. This version addresses a potential security vulnerability identified as CVE-2023-50164 and described in S2-066 - please read the mentioned security bulletins for more details. This is a drop-in replacement and upgrade should be straightforward. * https://cwiki.apache.org/confluence/display/WW/S2-066 Please read the Version Notes to find more details about performed bug fixes and improvements. * https://cwiki.apache.org/confluence/display/WW/Version+Notes+6.3.0.2 * https://cwiki.apache.org/confluence/display/WW/Version+Notes+2.5.33 All developers are strongly advised to perform this upgrade. The 6.x series of the Apache Struts framework has a minimum requirement of the following specification versions: Servlet API 3.1, JSP API 2.1, and Java 8. Should any issues arise with your use of any version of the Struts framework, please post your comments to the user list, and, if appropriate, file a tracking ticket. * https://issues.apache.org/jira/projects/WW/ You can download this version from our download page. * https://struts.apache.org/download.cgi#struts-ga Regards -- Łukasz --------------------------------------------------------------------- To unsubscribe, e-mail: user-unsubscr...@struts.apache.org For additional commands, e-mail: user-h...@struts.apache.org
