NTP clock variables information disclosure

Team,

Need to address the vulnerability "NTP clock variables information disclosure", may I know how do we check and fix this? I have jira 7.12 version and we are soon planning to upgrade to 8.6 in near future. however with the current version, vulnerability arose and may i know if there is a workaround to fix this or how do we do go about it?

Regards

Sriram S

2 answers

0 votes

You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.

Comment

0 votes

Hi Sriram,

I am confused by your question here. To the best of my knowledge Jira Service Desk has never had any such kind of security issue like the one you are describing. We do track security issues in our products such as in https://www.atlassian.com/trust/security/advisories

And while there have been two security issues for Jira Service Desk since 2017

neither of these have anything to do with NTP clock variables. Those terms are not something I believe Jira Service Desk has anything to do with. Could you let me know more details about what CVE you are referring to here?

Regards,

Andy

You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.

Forums

Product Q&A

Community resources

Support

Top groups

Community resources

Support

Learn

Community resources

Support

Events

Community resources

Support

NTP clock variables information disclosure

2 answers

Suggest an answer

Was this helpful?

Thanks!

TAGS

Atlassian Community Events