Details
-
Suggestion
-
Resolution: Unresolved
-
None
-
0
-
1
-
Description
NOTE: This suggestion is for JIRA Server. Using JIRA Cloud? See the corresponding suggestion.
7 new vulnerabilities were announced for OpenSSL on 5 June 2014. These vulnerabilities affect Tomcat Native, which ships with the Windows Installer versions of JIRA.
So please update your JIRA Windows Installers to include a patched version of Tomcat Native DLL's, once these become available.
Note
This is related to the Heartbleed vulnerability. Does not affect JIRA if recommended configuration is followed http://blogs.atlassian.com/2014/04/openssl-cve-2014-0160-atlassian/
Attachments
Issue Links
- relates to
-
JRACLOUD-38927 Update Tomcat Native DLL in JIRA Installer
- Closed