Create
cancel
Showing results for 
Search instead for 
Did you mean: 
Sign up Log in

Crowd 2.11.1 - Apache Struts2 REST XStream Vulnerability

Balaji Neyveli
I'm New Here
I'm New Here
Those new to the Atlassian Community have posted less than three times. Give them a warm welcome!
September 6, 2017

Hi,

 

Can you please verify if Crowd 2.11.1 version is affected by the  Apache Struts2 REST XStream Vulnerability (CVE-2017-9805)  ?

The REST plugin seems to be integrated into Crowd since 2.0.

Is Crowd using the REST plugin with XML? 

If so will there be a patch for it?

 

Thanks,

2 answers

1 accepted

2 votes
Answer accepted
Boris Berenberg - Atlas Authority
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
September 6, 2017
0 votes
Balaji Neyveli
I'm New Here
I'm New Here
Those new to the Atlassian Community have posted less than three times. Give them a warm welcome!
September 6, 2017

Thanks for the reply. It is great that Atlassian is so fast to respond to these issues. Helps us a lot. 

Suggest an answer

Log in or Sign up to answer
TAGS
AUG Leaders

Atlassian Community Events