Win a copy of Java 9 Modularity: Patterns and Practices for Developing Maintainable Applications this week in the Java 9 forum!
  • Post Reply Bookmark Topic Watch Topic
  • New Topic

FYI: Struts security update required  RSS feed

 
Tim Moores
Saloon Keeper
Posts: 3953
94
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Not really a question, and not quite news any more, but since it has now come to light that the recent Equifax hack was caused by a Struts vulnerability, I thought I'd remind anyone who drops by here that all Struts versions older than 2.3.32 or 2.5.10.1 are vulnerable. If you're using one of those older versions, head straight over to https://cwiki.apache.org/confluence/display/WW/S2-045 to get yourself up to speed, and follow its advice.

End of public service announcement :-)
 
  • Post Reply Bookmark Topic Watch Topic
  • New Topic
Boost this thread!