Visit NES for Apache Struts Home Page
Apache Commons BeanUtils 1.7.x Release Notes
5 versions
Comprehensive release notes and changelog for Apache Commons BeanUtils 1.7.x, including security patches, bug fixes, and feature updates across all supported versions.
September 2025
July 2025
1.7.4
Released Jul 17, 2025 Full Version:
1.7.0-commons-beanutils-1.7.4
Dependency Upgrades
- commons-logging:commons-logging
1.0.3to1.3.5
Bug Fixes
This release patches the following:
- CVE-2025-48734: Improper Access Control vulnerability
June 2025
1.7.3
Released Jun 6, 2025 Full Version:
1.7.0-commons-beanutils-1.7.3
Dependency Upgrades
- commons-collections:commons-collections
3.0to3.2.2
March 2025
February 2025
1.7.1
Released Feb 14, 2025 Full Version:
1.7.0-commons-beanutils-1.7.1
Notes
- This release originates from the open‑source BeanUtils project forked by HeroDevs. It encompasses modifications implemented by HeroDevs to ensure successful framework builds.
- This package is a dependency for Apache Struts 1. Upgrading to 1.9.4 is recommended but for projects that can't upgrade, this release is available.
Bug Fixes
This release patches the following:
- CVE-2014-0114: Class Loader manipulation.
- CVE-2019-10086: Sets the default behavior to block access to the classloader via the class property available on all Java objects.
- groupId:
commons-beanutils - artifactId:
commons-beanutilsFull Version:1.7.0-commons-beanutils-1.7.1
Stay in the loop
~/herodevs-spring-framework-support
herodevs@nes:open-source$ ./display-support-info.sh