Return-Path: X-Original-To: archive-asf-public-internal@cust-asf2.ponee.io Delivered-To: archive-asf-public-internal@cust-asf2.ponee.io Received: from cust-asf.ponee.io (cust-asf.ponee.io [163.172.22.183]) by cust-asf2.ponee.io (Postfix) with ESMTP id 981AE200CCC for ; Fri, 21 Jul 2017 14:44:20 +0200 (CEST) Received: by cust-asf.ponee.io (Postfix) id 96E1416D18D; Fri, 21 Jul 2017 12:44:20 +0000 (UTC) Delivered-To: archive-asf-public@cust-asf.ponee.io Received: from mail.apache.org (hermes.apache.org [140.211.11.3]) by cust-asf.ponee.io (Postfix) with SMTP id B623A16D188 for ; Fri, 21 Jul 2017 14:44:19 +0200 (CEST) Received: (qmail 96561 invoked by uid 500); 21 Jul 2017 12:44:13 -0000 Mailing-List: contact commits-help@struts.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: dev@struts.apache.org Delivered-To: mailing list commits@struts.apache.org Received: (qmail 96551 invoked by uid 99); 21 Jul 2017 12:44:13 -0000 Received: from git1-us-west.apache.org (HELO git1-us-west.apache.org) (140.211.11.23) by apache.org (qpsmtpd/0.29) with ESMTP; Fri, 21 Jul 2017 12:44:13 +0000 Received: by git1-us-west.apache.org (ASF Mail Server at git1-us-west.apache.org, from userid 33) id 98038DFC34; Fri, 21 Jul 2017 12:44:13 +0000 (UTC) Content-Type: text/plain; charset="us-ascii" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit From: lukaszlenart@apache.org To: commits@struts.apache.org Date: Fri, 21 Jul 2017 12:44:13 -0000 Message-Id: <8a2e6911fb544c3abfb8b698661aa332@git.apache.org> X-Mailer: ASF-Git Admin Mailer Subject: [1/9] struts-site git commit: Uses proper release dates archived-at: Fri, 21 Jul 2017 12:44:20 -0000 Repository: struts-site Updated Branches: refs/heads/master eac286200 -> ee1df46b1 Uses proper release dates Project: http://git-wip-us.apache.org/repos/asf/struts-site/repo Commit: http://git-wip-us.apache.org/repos/asf/struts-site/commit/f2334bde Tree: http://git-wip-us.apache.org/repos/asf/struts-site/tree/f2334bde Diff: http://git-wip-us.apache.org/repos/asf/struts-site/diff/f2334bde Branch: refs/heads/master Commit: f2334bde3ecdf67da0fc04eca45e8fb7e99a1a64 Parents: eac2862 Author: Lukasz Lenart Authored: Mon Jul 17 07:43:57 2017 +0200 Committer: Lukasz Lenart Committed: Mon Jul 17 07:43:57 2017 +0200 ---------------------------------------------------------------------- _config.yml | 4 +-- source/announce.md | 66 ++++++++++++++++++++++++------------------------- source/index.html | 2 +- 3 files changed, 36 insertions(+), 36 deletions(-) ---------------------------------------------------------------------- http://git-wip-us.apache.org/repos/asf/struts-site/blob/f2334bde/_config.yml ---------------------------------------------------------------------- diff --git a/_config.yml b/_config.yml index bd6863c..d2bffbf 100644 --- a/_config.yml +++ b/_config.yml @@ -15,8 +15,8 @@ current_version_short: 2512 archetype_version: 2.5.5 current_beta_version: 2.5-BETA3 current_beta_version_short: 25B3 -release_date: 17 July 2017 -release_date_short: 20170717 +release_date: 06 July 2017 +release_date_short: 20170706 beta_release_date_short: 20160126 # Allows directly edit pages on GitHub http://git-wip-us.apache.org/repos/asf/struts-site/blob/f2334bde/source/announce.md ---------------------------------------------------------------------- diff --git a/source/announce.md b/source/announce.md index 0cfa31e..ac5075c 100644 --- a/source/announce.md +++ b/source/announce.md @@ -12,7 +12,39 @@ title: Announcements Skip to: Announcements - 2016

-#### 17 July 2017 - Struts 2.5.12 General Availability {#a20170717} +#### 07 July 2017 - Struts 2.3.33 General Availability {#a20170707} + +The Apache Struts group is pleased to announce that Struts 2.3.32 is available as a "General Availability" +release. The GA designation is our highest quality grade. + +This release addresses two potential security vulnerabilities: + + - [S2-049](/docs/s2-049.html) + A DoS attack is available for Spring secured actions + - [S2-048](/docs/s2-048.html) + Possible RCE in the Struts Showcase app in the Struts 1 plugin example in Struts 2.3.x series + +Also this version resolves the following issues: + + - `EmailValidator` does not accept new domain suffixes + - Revision number still missing from `dojo.js` and `dojo.js.uncompressed.js` + - Strange Behavior Parsing Action Requests + +Apache Struts 2 is an elegant, extensible framework for creating enterprise-ready Java web applications. +The framework is designed to streamline the full development cycle, from building, to deploying, +to maintaining applications over time. + +**All developers are strongly advised to perform this action.** + +The 2.3.x series of the Apache Struts framework has a minimum requirement of the following specification versions: +Servlet API 2.4, JSP API 2.0, and Java 6. + +Should any issues arise with your use of any version of the Struts framework, please post your comments +to the user list, and, if appropriate, file a tracking ticket. + +You can download this version from our [download](download.cgi#struts-23x) page. + +#### 06 July 2017 - Struts 2.5.12 General Availability {#a20170706} The Apache Struts group is pleased to announce that Struts 2.5.12 is available as a "General Availability" release. The GA designation is our highest quality grade. @@ -85,38 +117,6 @@ to the user list, and, if appropriate, file a tracking ticket. You can download this version from our [download](download.cgi#struts-ga) page. -#### 17 July 2017 - Struts 2.3.33 General Availability {#a20170717-2} - -The Apache Struts group is pleased to announce that Struts 2.3.32 is available as a "General Availability" -release. The GA designation is our highest quality grade. - -This release addresses two potential security vulnerabilities: - - - [S2-049](/docs/s2-049.html) - A DoS attack is available for Spring secured actions - - [S2-048](/docs/s2-048.html) - Possible RCE in the Struts Showcase app in the Struts 1 plugin example in Struts 2.3.x series - -Also this version resolves the following issues: - - - `EmailValidator` does not accept new domain suffixes - - Revision number still missing from `dojo.js` and `dojo.js.uncompressed.js` - - Strange Behavior Parsing Action Requests - -Apache Struts 2 is an elegant, extensible framework for creating enterprise-ready Java web applications. -The framework is designed to streamline the full development cycle, from building, to deploying, -to maintaining applications over time. - -**All developers are strongly advised to perform this action.** - -The 2.3.x series of the Apache Struts framework has a minimum requirement of the following specification versions: -Servlet API 2.4, JSP API 2.0, and Java 6. - -Should any issues arise with your use of any version of the Struts framework, please post your comments -to the user list, and, if appropriate, file a tracking ticket. - -You can download this version from our [download](download.cgi#struts-23x) page. - #### 9 July 2017 - Possible RCE in the Struts Showcase app in the Struts 1 plugin example in the Struts 2.3.x series {#a20170707} A potential security vulnerability was reported in the Struts 1 plugin used in the Struts 2.3.x series. http://git-wip-us.apache.org/repos/asf/struts-site/blob/f2334bde/source/index.html ---------------------------------------------------------------------- diff --git a/source/index.html b/source/index.html index 7699683..050d964 100644 --- a/source/index.html +++ b/source/index.html @@ -42,7 +42,7 @@ title: Welcome to the Apache Struts project

Apache Struts 2.3.33 GA

It's the latest release of Struts 2.3.x which contains the latest security fix, - read more in Announcement or in + read more in Announcement or in Version notes