Fork me on GitHub

Announcements

Skip to: Announcements - 2014

26 August 2015 - Security Bulletin S2-025

The Apache Struts group is pleased to announce that a new security bulletin was published - S2-025

Thanks to Taki Uchiyama from JPCERT/CC who reported two potential XSS vulnerabilities available in older versions of The Apache Struts 2. Please read the mentioned security bulletin for more details and also reading our Security guideline will help you secure your application

31 July 2015 - Struts 2.5-BETA1 (BETA)

The Apache Struts group is pleased to announce that Struts 2.5-BETA1 is available as a “BETA” release.

Apache Struts 2 is an elegant, extensible framework for creating enterprise-ready Java web applications. The framework is designed to streamline the full development cycle, from building, to deploying, to maintaining applications over time.

This release contains several breaking changes and improvements just to mention few of them:

and many other improvements, please check the version notes

The 2.5.x series of the Apache Struts framework has a minimum requirement of the following specification versions: Servlet API 2.4, JSP API 2.0, and Java 7.

Should any issues arise with your use of any version of the Struts framework, please post your comments to the user list, and, if appropriate, file a tracking ticket.

7 May 2015 - Struts 2.3.24 General Availability

The Apache Struts group is pleased to announce that Struts 2.3.24 is available as a “General Availability” release. The GA designation is our highest quality grade.

Apache Struts 2 is an elegant, extensible framework for creating enterprise-ready Java web applications. The framework is designed to streamline the full development cycle, from building, to deploying, to maintaining applications over time.

This release contains several fixes and improvements just to mention few of them:

and many other improvements, please check the version notes

All developers are strongly advised to perform this action.

The 2.3.x series of the Apache Struts framework has a minimum requirement of the following specification versions: Servlet API 2.4, JSP API 2.0, and Java 6.

Should any issues arise with your use of any version of the Struts framework, please post your comments to the user list, and, if appropriate, file a tracking ticket.

6 May 2015 - Struts 2.3.20.1 General Availability with Security Fix Release

The Apache Struts group is pleased to announce that Struts 2.3.20.1 is available as a “General Availability” release. The GA designation is our highest quality grade.

Apache Struts 2 is an elegant, extensible framework for creating enterprise-ready Java web applications. The framework is designed to streamline the full development cycle, from building, to deploying, to maintaining applications over time.

One medium security issue was solved with this release:

All developers are strongly advised to perform this action.

The 2.3.x series of the Apache Struts framework has a minimum requirement of the following specification versions: Servlet API 2.4, JSP API 2.0, and Java 6.

Should any issues arise with your use of any version of the Struts framework, please post your comments to the user list, and, if appropriate, file a tracking ticket.

Skip to: Announcements - 2014

Next: Kickstart FAQ