Fixed the unexpected event occur in Apache Struts1 (CVE-2016-1181)(CVE-2016-1182) and provided Apache Struts 1.2.9 with Security Patch 3 contributed by TERASOLUNA (hereinafter referred to as, Struts 1.2.9 sp3) under the Apache License, Version 2.0 for TERASOLUNA Server Framework for Java that uses Apache Struts 1.2.9 sp2 in TERASOLUNA framework version 2 system.
TERASOLUNA Server Framework for Java uses Apache Struts 1.2.9 sp2 in TERASOLUNA framework version 2 system. Unexpected events may occur during a processing of the request information in Apache Struts 1.2.9 sp2. As a measure for this issue, apply the Struts 1.2.9 sp3.
Furthermore, the improvement of the TERASOLUNA Server Framework for Java 2 will be released during May 2016.
In Struts 1.2.9 sp3, the following changes have been done on Struts 1.2.9 sp2.
Below is the procedure to build the source code of struts-1.2.9-sp3 and create struts.jar file.
Unless required by applicable law or agreed to in writing, Struts 1.2.9 sp3 distributed under the Apache License, Version 2.0 is distributed on an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the Apache License, Version 2.0 for the specific language governing permissions and limitations under the License.
※ TERASOLUNA is a registered trademark or trademark of NTT DATA Corporation in Japan and other countries. ※ Other company names, product names and service names mentioned are trademarks or registered trademarks of the respective companies(owners).