Details
-
Suggestion
-
Resolution: Fixed
-
None
-
3
-
Description
Problem Definition
Bamboo server log throws "Security framework of XStream not initialized, XStream is probably vulnerable" message.
Suggested Solution
Set the permissions for the XStream library when it is initialized and do not rely on the defaults. An explicit call to addPermission() would no longer log the warning.
Workaround
There is no workaround.
Attachments
Issue Links
- was cloned as
-
JRASERVER-71181 Jira server log throws Security framework of XStream not initialized, XStream is probably vulnerable.
- Gathering Interest