Upgrade bundled Tomcat to 9.0.111 or higher

XMLWordPrintable

    • Type: Suggestion
    • Resolution: Unresolved
    • None
    • Component/s: Data Center - Core
    • None
    • 1

      Confluence LTS 9.2.10 is bundled with 9.0.110 tomcat version that is affected by below vulnerability.

      • 69848: Fix copy/paste errors in 9.0.110 that meant DELETE requests received via the AJP connector were processed as OPTIONS requests and PROPFIND requests were processed as TRACE. (markt)

      As Tomcat 9.0.111 contains a fix for it, it would good to upgrade bundled tomcat in upcoming release of Confluence 9.2 LTS.

            Assignee:
            Unassigned
            Reporter:
            Juwin Zam
            Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

              Created:
              Updated: