Uploaded image for project: 'Jira Data Center'
  1. Jira Data Center
  2. JRASERVER-72211

Tomcat PersistenceManager vulnerabilities - CVE-2021-25329 and CVE-2021-25122

XMLWordPrintable

    • 8.05
    • 11
    • Severity 2 - Major
    • 46
    • Hide
      Atlassian Update – 23 April 2021

      Hello everyone,

      We’re assessing the safety and stability of this fix right now, just to make sure it can be safely backported to the LTS releases.
      The stability of the LTS releases is our top priority, that’s why we’re doing everything we can to provide them with the latest and most important fixes.
      We’re planning to backport this fix within the next few weeks, unless we encounter some bigger problems.
      Please watch this issue for any further updates.

      Thank you.
      Jira Server and Data Center Team

      Show
      Atlassian Update – 23 April 2021 Hello everyone, We’re assessing the safety and stability of this fix right now, just to make sure it can be safely backported to the LTS releases. The stability of the LTS releases is our top priority, that’s why we’re doing everything we can to provide them with the latest and most important fixes. We’re planning to backport this fix within the next few weeks, unless we encounter some bigger problems. Please watch this issue for any further updates. Thank you. Jira Server and Data Center Team

      Affected versions of Atlassian Jira Server and Data Center are susceptible to Tomcat PersistenceManager vulnerabilities.

      Affected versions:

      • ≤ 8.16.0

      Fixed versions:

      • pending

              Unassigned Unassigned
              rrosa@atlassian.com Rodrigo Rosa
              Votes:
              3 Vote for this issue
              Watchers:
              29 Start watching this issue

                Created:
                Updated:
                Resolved: