Release of Apache Struts 1.2.9 with Security Patch 2 contributed by TERASOLUNA (Henceforth, Struts 1.2.9 sp2) in which the vulnerability of Apache Struts1 has been corrected with respect to Apache Struts 1.2.9 sp1 used by TERASOLUNA Framework.
In Struts 1.2.9 sp2, the following changes have been done on Struts 1.2.9 sp1.
Replace the existing "Struts.jar" with the one provided in this patch. Only "Struts.jar" is to be replaced. Other jar files depending on this jar need not be replaced.
Below is the procedure to build the source code of struts-1.2.9-sp2 and create struts.jar file.
Unless required by applicable law or agreed to in writing, Struts 1.2.9 sp2 distributed under the Apache License, Version 2.0 is distributed on an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
See the Apache License, Version 2.0 for the specific language governing permissions and limitations under the License.
*TERASOLUNA is a registered trademark or trademark of NTT DATA Corporation in Japan and other countries.
*Other company names, product names and service names mentioned are trademarks or registered trademarks of the respective companies(owners).