Uploaded image for project: 'Bitbucket Data Center'
  1. Bitbucket Data Center
  2. BSERV-12222

Update Tomcat dependency to 9.0.31

    XMLWordPrintable

Details

    • We collect Bitbucket feedback from various sources, and we evaluate what we've collected when planning our product roadmap. To understand how this piece of feedback will be reviewed, see our Implementation of New Features Policy.

    Description

      Fixes:
      CVE-2020-1938 AJP Request Injection and potential Remote Code Execution
      CVE-2020-1935 HTTP Request Smuggling
      CVE-2019-17569 HTTP Request Smuggling

      Attachments

        Issue Links

          causes

          Bug - A problem which impairs or prevents the functions of the product. BSERV-12266 Fails to start with error: The AJP Connector is configured with secretRequired="true" but the secret attribute is either null or "". This combination is not valid.

          • Low - Low priority issues
          • Closed

          Activity

            People

              behumphreys Ben Humphreys
              behumphreys Ben Humphreys
              Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: