struts-user mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Lehmer, Jason" <>
Subject Security vulnerability process for EOL versions
Date Wed, 13 Sep 2017 16:57:11 GMT
In cases where the Struts community is notified or discovers a security vulnerability in a
supported version, does the evaluation process include identifying unsupported versions that
may be impacted as well? I realize the recommendation will likely be to upgrade to a supported
version but I just wanted to confirm that even EOL versions are taken into account when identifying
potential impacts.


  • Unnamed multipart/alternative (inline, None, 0 bytes)
View raw message