Uploaded image for project: 'FishEye'
  1. FishEye
  2. FE-7164

Fisheye had a vulnerable version of Apache Commons FileUpload - CVE-2016-1000031

    XMLWordPrintable

Details

    Description

      The DiskFileItem class from the Apache Commons FileUpload library before version 1.3.3 was vulnerable to CVE-2016-1000031. Atlassian Fisheye was using a vulnerable version of this library, although not the DiskFileItem class. Fisheye has been updated to use the safe version of the Apache Commons FileUpload library.

      Attachments

        Issue Links

          is related to

          Bug - A problem which impairs or prevents the functions of the product. CRUC-8382 Crucible had a vulnerable version of Apache Commons FileUpload - CVE-2016-1000031

          • Low - Low priority issues
          • Closed

          Activity

            People

              Unassigned Unassigned
              ejensby Erin Jensby
              Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: