S2-063: CVE-2023-34149: Apache Struts: DoS via OOM owing to not properly checking of list bounds

Affected versions: - Apache Struts through 2.5.30 - Apache Struts through 6.1.2 Description: Allocation of Resources Without Limits or Throttling vulnerability in Apache Software Foundation Apache Struts.This issue affects Apache Struts: through 2.5.30, through 6.1.2. Credit: Matthew McClain

S2-064: CVE-2023-34396: Apache Struts: DoS via OOM owing to no sanity limit on normal form fields in multipart forms

Affected versions: - Apache Struts through 2.5.30 - Apache Struts through 6.1.2 Description: Allocation of Resources Without Limits or Throttling vulnerability in Apache Software Foundation Apache Struts.This issue affects Apache Struts: through 2.5.30, through 6.1.2. Credit: Matthew McClain