Jira server log throws Security framework of XStream not initialized, XStream is probably vulnerable.

XMLWordPrintable

    • 3
    • 9

      Problem Definition

      Jira server log throws "Security framework of XStream not initialized, XStream is probably vulnerable" message.

      Suggested Solution

      Set the permissions for the XStream library when it is initialized and do not rely on the defaults. An explicit call to addPermission() would no longer log the warning.

      Workaround

      There is no workaround.

            Assignee:
            Unassigned
            Reporter:
            Rodrigo Baldasso
            Votes:
            48 Vote for this issue
            Watchers:
            39 Start watching this issue

              Created:
              Updated: