Oh! Thank you again for your clarification, Lukasz. Davo
On Fri, Dec 5, 2025 at 1:53 AM Lukasz Lenart <[email protected]> wrote: > pt., 5 gru 2025 o 08:35 David Brunstein <[email protected]> > napisał(a): > > S2-068 > > https://cwiki.apache.org/confluence/display/WW/S2-068 > > > > Under the Solution section, the page stands "Upgrade to Struts 6.8.0", > should it be updated to "Upgrade to Struts 6.7.0"? > > No, this is fine, CVE is addressed in 6.8.0 or 7.1.1, the only missing > point is: 6.7.4 is also affected - I already updated the bulletin > > Cheers > Łukasz > > --------------------------------------------------------------------- > To unsubscribe, e-mail: [email protected] > For additional commands, e-mail: [email protected] > >
