Loading...

XML

Word

Printable

Type: Bug
Resolution: Fixed
Priority: Low
Fix Version/s: 8.5.16, 8.13.8
Affects Version/s: 8.5.12, 8.13.5, 8.16.0
Component/s: Tomcat
Labels:

Fixed in Long Term Support Release/s:

Download 8.5
Introduced in Version:
8.05
Support reference count:
1
Symptom Severity:
Severity 2 - Major
UIS:
35
Bug Fix Policy:
View Atlassian Server bug fix policy

Issue Summary

The Apache Tomcat version used by the currently available LTS (Long Term Support) releases has a few vulnerabilities, therefore the next LTS release should bundle an updated version of Tomcat.

Steps to Reproduce

Not applicable.

Expected Results

Not applicable.

Actual Results

Not applicable.

Note on fix

Tomcat version will be bumped to version 8.5.65

Workaround

You can manually upgrade the Apache Tomcat version used by Jira following the procedures outlined in the following article: How to Upgrade Apache Tomcat version in Jira.

is related to

JRASERVER-72211 Tomcat PersistenceManager vulnerabilities - CVE-2021-25329 and CVE-2021-25122

Closed

relates to

JRASERVER-72609 Upgrade the bundled version of Apache Tomcat to 8.5.68 or later

Closed

mentioned in: Page Loading...

Assignee:: Unassigned

Reporter:: Gregory Peres (Inactive)

Votes:: 3 Vote for this issue

Watchers:: 8 Start watching this issue

Created:: 12/Apr/2021 3:50 PM

Updated:: 22/Sep/2021 3:58 PM

Resolved:: 15/Jun/2021 4:45 PM

Details

Description

Issue Summary

Steps to Reproduce

Expected Results

Actual Results

Note on fix

Workaround

Attachments

Issue Links

Activity

People

Dates