Author: buildbot
Date: Tue Jul 16 08:29:45 2013
New Revision: 869671
Log:
Staging update by buildbot for struts
Modified:
websites/staging/struts/trunk/content/ (props changed)
websites/staging/struts/trunk/content/announce.html
Propchange: websites/staging/struts/trunk/content/
------------------------------------------------------------------------------
--- cms:source-revision (original)
+++ cms:source-revision Tue Jul 16 08:29:45 2013
@@ -1 +1 @@
-1503603
+1503605
Modified: websites/staging/struts/trunk/content/announce.html
==============================================================================
--- websites/staging/struts/trunk/content/announce.html (original)
+++ websites/staging/struts/trunk/content/announce.html Tue Jul 16 08:29:45 2013
@@ -333,7 +333,7 @@ limitations under the License. --><!-- /
<a href="announce-2012.html">Announcements - 2012</a>
</p>
- <div class="section"><div class="section"><h4 id="a20130716">16
July 2013 - Struts 2.3.15.1 General Availability Release</h4>
+ <div class="section"><div class="section"><h4 id="a20130716">16
July 2013 - Struts 2.3.15.1 General Availability Release - Security Fix
Release</h4>
<p>
The Apache Struts group is pleased to announce that Struts
2.3.15.1 is
available as a "General Availability" release. The
GA designation is our
@@ -349,11 +349,13 @@ limitations under the License. --><!-- /
Two security issues were solved with this release:
</p><ul>
<li>
- Remote code execution vulnerability when using
short-circuit navigation
+ <a class="externalLink"
href="http://struts.apache.org/release/2.3.x/docs/s2-016.html";>S2-016</a>
+ - Remote code execution vulnerability when using
short-circuit navigation
parameter prefixes
</li>
<li>
- Open redirect vulnerability when using short-circuit
redirect
+ <a class="externalLink"
href="http://struts.apache.org/release/2.3.x/docs/s2-017.html";>S2-017</a>
+ - Open redirect vulnerability when using short-circuit
redirect
parameter prefixes
</li>
</ul>
