Uploaded image for project: 'Jira Software Data Center'
  1. Jira Software Data Center
  2. JSWSERVER-21350

Tracking Resolution of Issue Described in FAQ for CVE-2022-22965

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Fixed
    • Icon: Medium Medium
    • 8.13.20, 8.20.8, 8.22.2
    • 8.13.0, 8.20.0
    • Security
    • None

      This issue stands as a place holder to track the progress of resolving the issue described at FAQ for CVE-2022-22965.

      As part of normal security practice, we do not disclose security issues until they are fully resolved in our products so as to mitigate the risk to our customers. In this case the broader security concern was raised publicly by a third party, so broad stroke information about the issue is already available.

      We cannot disclose particular details of the issue, and the FAQ for CVE-2022-22965 remains the single source of truth. Once this issue is resolved, we will update this issue to point to the security disclosure issue with additional detail.

      UPDATE

      We’ve released these new versions with an upgraded version of Tomcat which also serves to mitigate this issue:

            Unassigned Unassigned
            drohan Daniel R
            Votes:
            6 Vote for this issue
            Watchers:
            22 Start watching this issue

              Created:
              Updated:
              Resolved: