Loading...

XML

Word

Printable

Details

Type: Bug
Resolution: Fixed
Priority: Low
Fix Version/s: 8.3.0, 8.2.3
Affects Version/s: 8.1.0
Component/s: Front-end API, Web Resources Manager
Labels:

Introduced in Version:
8.01
Symptom Severity:
Severity 3 - Minor
Bug Fix Policy:
View Atlassian Server bug fix policy

Description

The version of jQuery used in Jira before 8.2.3 was vulnerable to CVE-2019-11358. This issue was addressed by updating Jira server to use a patched & custom version of jQuery (2.2.4.7).

Attachments

Issue Links

relates to

JRASERVER-72273 Public documentation for the fixes included in the jQuery custom version

Gathering Interest

mentioned in: Page Loading...; Page Loading...

Activity

People

Assignee:: Unassigned

Reporter:: Security Metrics Bot

Votes:: 0 Vote for this issue

Watchers:: 3 Start watching this issue

Dates

Created:: 01/Aug/2019 5:11 AM

Updated:: 20/Apr/2022 6:54 PM

Resolved:: 01/Aug/2019 5:12 AM