Uploaded image for project: 'FishEye'
  1. FishEye
  2. FE-6713

Upgrade OGNL to a version >= 3.0.12

    XMLWordPrintable

Details

    Description

      Various hardening changes have been applied to OGNL. In specific, there seems to be a number of changes that relate to https://struts.apache.org/docs/s2-034.html being fixed in OGNL versions >= 3.0.12.

      We suspect that changes including https://issues.apache.org/jira/browse/OGNL-252, https://github.com/jkuhnert/ognl/pull/9 and https://github.com/jkuhnert/ognl/commit/1da0a238cd90ab1affda30620dcc388a030db1e7 may be related to https://struts.apache.org/docs/s2-034.htm.

      Attachments

        Activity

          People

            czawadka@atlassian.com Cezary Zawadka
            dblack David Black
            Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved: