Uploaded image for project: 'Confluence Data Center'
  1. Confluence Data Center
  2. CONFSERVER-33729

Upgrading to 5.5.1 from 5.4.3 didn't update xwork from 1.13 to 1.17

    XMLWordPrintable

Details

    Description

      We recently upgraded our instance following your security advisory. It was discovered shortly after the upgrade that the xwork file that was vulnerable (1.13) was not upgraded to the safe version (1.17). This could have just been specific to our instance but you should check your upgrade process and see if the correct file is bundled and the update process is actually updating it.

      Attachments

        Issue Links

          relates to

          Bug - A problem which impairs or prevents the functions of the product. CONFSERVER-33515 ClassLoader Manipulation vulnerability

          • High - High priority issues
          • Closed
          mentioned in

          Page Loading...

          Page Loading...

          Page Loading...

          Activity

            People

              shaffenden Steve Haffenden (Inactive)
              4c44925d5073 Steve Goldberg
              Votes:
              0 Vote for this issue
              Watchers:
              4 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: