You are viewing a plain text version of this content. The canonical link for it is here.

Posted to commits@struts.apache.org by mc...@apache.org on 2012/01/22 23:34:07 UTC

svn commit: r1234638 - /struts/site/src/site/xdoc/announce.xml

Author: mcucchiara
Date: Sun Jan 22 22:34:06 2012
New Revision: 1234638

URL: http://svn.apache.org/viewvc?rev=1234638&view=rev
Log:
Added countermeasure

Modified:
    struts/site/src/site/xdoc/announce.xml

Modified: struts/site/src/site/xdoc/announce.xml
URL: http://svn.apache.org/viewvc/struts/site/src/site/xdoc/announce.xml?rev=1234638&r1=1234637&r2=1234638&view=diff
==============================================================================
--- struts/site/src/site/xdoc/announce.xml (original)
+++ struts/site/src/site/xdoc/announce.xml Sun Jan 22 22:34:06 2012
@@ -47,6 +47,9 @@ limitations under the License.
                    <li>
                        ParameterInterceptor vulnerability allowed remote command execution
                    </li>
+                   <li>
+                       Default acceptedParamNames has been updated to more restrictive values
+                   </li>
                </ul>
            </p>
            <p>