[BAM-10628] Arbitrary file disclosure vulnerability - Create and track feature requests for Atlassian products.

XML

Word

Printable

Details

Type: Bug
Status: Closed (View Workflow)
Priority: High
Resolution: Fixed
Affects Version/s: None
Fix Version/s: 3.3.4, 3.4.3, 4.0 M1
Component/s: Security
Labels:

Bug Fix Policy:
View Atlassian Server bug fix policy

Description

We have identified and fixed a vulnerability in Bamboo caused by a combination of issues in third-party libraries, including FreeMarker template library, used in Bamboo.

All versions of Bamboo from 3.0 up are affected.

This issue is reported in our security advisory on this page:
http://confluence.atlassian.com/x/MgFTE

The vulnerability is related to the previously disclosed FreeMarker issue.

Attachments

Options
- Sort By Name
- Sort By Date
- Ascending
- Descending
- Thumbnails
- List

Attachments

freemarker-2.3.16-atlassian-11.jar
825 kB
17/Jan/2012 6:43 AM

Activity

People

Assignee:: Vitaly Osipov [Atlassian]

Reporter:: Paul Watson (Inactive)

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Dates

Created:: 17/Jan/2012 12:31 AM

Updated:: 19/Aug/2019 2:02 AM

Resolved:: 31/Jan/2012 6:35 AM