You're on your way to the next level! Join the Kudos program to earn points and save your progress.
Level 1: Seed
25 / 150 points
Next: Root
1 badge earned
Challenges come and go, but your rewards stay with you. Do more to earn more!
What goes around comes around! Share the love by gifting kudos to your peers.
Keep earning points to reach the top of the leaderboard. It resets every quarter so you always have a chance!
Join now to unlock these features and more
The Atlassian Community can help you and your team get more value out of Atlassian products and practices.
Hi,
Has Bitbucket (or any of the other Atlassian products required to use it) been affected by the recent "log4shell" vulnerability in Log4J?
Thanks for your help!
Hi all,
Daniel with Atlassian Support here to let you know our security team has finished its investigation. We have an official response statement here on Community, which you can access at this link.
More information can be found on our advisory page, as well as the previously-published FAQ:
Thanks,
Daniel Eads | Atlassian Support
Hi, you can find FAQs and Atlassian recommendations and updates related to Log4J here 👉 https://confluence.atlassian.com/kb/faq-for-cve-2021-44228-1103069406.html
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
"You can check if you are vulnerable by inspecting the Log4j configuration file. If you find a line containing the org.apache.log4j.net.JMSAppender
, you may be vulnerable. If you do not find a line containing the org.apache.log4j.net.JMSAppender
, you do not have this specific vulnerable configuration."
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
☝️above is information for data-centre and server
In terms of Cloud there is a mention in FAQ that Atlassian security team is investigating the impact on Cloud but nothing specific is mentioned there yet.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
ElasticSearch in our BitBucket has the affected JAR files
But Atlassian are saying Bitbucket is not affected?
Whats the deal please?
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi, My Confluence instance used for an Opensource project has been hacked since the 22th November.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.