struts-user mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Lukasz Lenart <lukaszlen...@apache.org>
Subject Re: Question
Date Wed, 14 Nov 2018 19:58:22 GMT
śr., 14 lis 2018 o 19:34 Deborah White <Deborah.White@doj.ca.gov> napisał(a):
>
> Hello, we have some very old internal apps that are still using Struts 1.  Does this
alert apply to Struts 1 or only Struts 2?  It says 2.3.36 or prior so I'm not sure.
>
> https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1000031

Struts 1 reached EOL in 2013, we do not publish any announcements that
target that version, neither support it in any case.


Regards
-- 
Łukasz
+ 48 606 323 122 http://www.lenart.org.pl/

---------------------------------------------------------------------
To unsubscribe, e-mail: user-unsubscribe@struts.apache.org
For additional commands, e-mail: user-help@struts.apache.org


Mime
View raw message