Details
-
Bug
-
Resolution: Fixed
-
Low
-
4.2.3
-
Severity 3 - Minor
-
Description
The DiskFileItem class from the Apache Commons FileUpload library before version 1.3.3 was vulnerable to CVE-2016-1000031. Atlassian Fisheye was using a vulnerable version of this library, although not the DiskFileItem class. Fisheye has been updated to use the safe version of the Apache Commons FileUpload library.
Attachments
Issue Links
- is related to
-
CRUC-8382 Crucible had a vulnerable version of Apache Commons FileUpload - CVE-2016-1000031
- Closed