Details
Description
Apache commons-fileupload 1.3.1 was released this weekend with a fix for CVE-2014-0050, involving a DoS attack when using specially crafted multipart requests. We need to determine if Confluence is vulnerable, and if so, upgrade to this version of the library.
Attachments
Issue Links
- is related to
-
JRASERVER-36938 Security vulnerability in apache commons fileupload
- Closed
-
BSERV-4362 Security vulnerability in apache commons fileupload
- Closed
- Is related to
-
BDEV-4448 Loading...