Details
-
Bug
-
Resolution: Fixed
-
High
-
7.13.0, 7.6.12, 8.0.2
-
7.06
-
1
-
Severity 2 - Major
-
4
-
Description
Issue Summary
- The current version of Tomcat 8.5.35 bundled with JIRA 8.0 is vulnerable to Denial of Service CVE-2019-0199.
https://tomcat.apache.org/security-8.html#Fixed_in_Apache_Tomcat_8.5.38
Fixed Versions
- >= 8.5.38
- >= 9.0.16
Workaround
- Upgrade Tomcat via the steps mentioned in https://confluence.atlassian.com/jirakb/how-to-upgrade-apache-tomcat-version-in-jira-7-x-879957866.html?
Attachments
Issue Links
- duplicates
-
JRASERVER-69100 Upgrade Tomcat to 8.5.38 to fix CVE-2019-0199
- Closed
- mentioned in
-
Page Loading...