Uploaded image for project: 'Crowd Data Center'
  1. Crowd Data Center
  2. CWD-4240

Upgrade tomcat to a version >= 7.0.55

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Fixed
    • Icon: Medium Medium
    • 2.8.4
    • None
    • None

      "Request Smuggling CVE-2014-0227" was fixed in Tomcat 7.0.55 as crowd currently seems to bundle tomcat 7.0.54 crowd is vulnerable to CVE-2014-0227.

            [CWD-4240] Upgrade tomcat to a version >= 7.0.55

            Monique Khairuliana (Inactive) made changes -
            Workflow Original: Simplified Crowd Development Workflow v2 - restricted [ 1509953 ] New: JAC Bug Workflow v3 [ 3364862 ]
            Status Original: Resolved [ 5 ] New: Closed [ 6 ]
            vkharisma made changes -
            Link New: This issue relates to CONFCLOUD-36501 [ CONFCLOUD-36501 ]
            Owen made changes -
            Workflow Original: Simplified Crowd Development Workflow v2 [ 1392575 ] New: Simplified Crowd Development Workflow v2 - restricted [ 1509953 ]
            Owen made changes -
            Workflow Original: Crowd Development Workflow v2 [ 830081 ] New: Simplified Crowd Development Workflow v2 [ 1392575 ]
            David Black made changes -
            Labels Original: breaches-security-sla cvss-medium security New: cvss-medium security
            David Black made changes -
            Security Original: Reporter and Atlassian Staff [ 10751 ]
            David Black made changes -
            Link New: This issue incorporates CWD-4214 [ CWD-4214 ]
            Ferd made changes -
            Remote Link New: This issue links to "Page (Extranet)" [ 144003 ]
            joe made changes -
            Fix Version/s New: 2.8.4 [ 54305 ]
            Resolution New: Fixed [ 1 ]
            Status Original: In Progress [ 3 ] New: Resolved [ 5 ]
            joe made changes -
            Remote Link New: This issue links to "Crowd › Master (JDK 1.8) Main Build › issue-CWD-4240-upgrade-tomcat (identity-bamboo)" [ 131555 ]

              jwalton joe
              dblack David Black
              Affected customers:
              0 This affects my team
              Watchers:
              1 Start watching this issue

                Created:
                Updated:
                Resolved: