It's not the same without you
Join the community to find out what other Atlassian users are discussing, debating and creating.
struts2-core-2.3.20.1.jar this file has serious vulnerability, is there a fix available from Atlassian, this file is in may locations see below
/opt/atlassian-crowd-2.8.4/crowd-webapp/WEB-INF/lib/struts2-core-2.3.20.1.jar
/opt/atlassian-crowd-2.8.4/demo-webapp/WEB-INF/lib/struts2-core-2.3.20.1.jar
/opt/atlassian-crowd-2.8.4/crowd-openidserver-webapp/WEB-INF/lib/struts2-core-2.3.20.1.jar
/opt/atlassian-crowd-2.8.4/crowd-openidclient-webapp/WEB-INF/lib/struts2-core-2.3.20.1.jar
Hi Asif,
Yes, there is a fix available. You will actually need to upgrade your Crowd installation. Please take a look at this page: https://confluence.atlassian.com/crowd/crowd-security-advisory-2017-03-10-876857916.html
Hey admins! I’m Dave, Principal Product Manager here at Atlassian working on our cloud platform and security products. Cloud security is a moving target. As you adopt more products, employees consta...
Connect with like-minded Atlassian users at free events near you!
Find a groupConnect with like-minded Atlassian users at free events near you!
Unfortunately there are no AUG chapters near you at the moment.
Start an AUGYou're one step closer to meeting fellow Atlassian users at your local meet up. Learn more about AUGs
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.