Forums
Home Q&A Discussion groups Articles Ask a question Search
Learning
Events
Champions
Community
Forums
Home Q&A Discussion groups Articles Ask a question Search
Learning Events Champions
Forums
Home Q&A Discussion groups Articles Ask a question Search
Learning Events Champions

Forums

Articles
Create
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Q&A
See all
Community resources
Top groups
Explore all groups
Community resources
Learn
Community resources
Events
Community resources

Log4j vulnernerability in jira apps

Ramakrishna Grandhi
Ramakrishna Grandhi
Contributor
December 13, 2021

Hi, we've a jira server app and its .jar file. It has a dependency on log4j 1.2.6 indirectly i.e. we dont have the ref in pom.xml but one of the dependencies has it. Can someone advise on how to make this transitive dependency to latest log4j?

Answer
Watch
Like Be the first to like this
1259 views

1 answer

3 votes
Nic Brough -Adaptavist-
Nic Brough -Adaptavist-
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Champions.
Get recognized
April 1, 2015

The standard LDAP connection only pulls in the data that JIRA needs (name, email, password verification, and timezone).  So the short answer is that you can't, without coding something to fetch it from LDAP.

View More Comments
rambabu patina
rambabu patina
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Champions.
Get recognized
April 1, 2015

Thanks you Nic for quick reply

Like
rambabu patina
rambabu patina
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Champions.
Get recognized
April 1, 2015

Hi Nic, And one more thing is, We are maintaining crowd and all users are coming form LDAP to the crowd. And we integrated jira with crowd, so all the users in the jira coming form crowd. As you said we cannot find the location of the user in the jira. This is clear to me. But is any way to get the location in crowd with API? Thanks, Rambabu

Like
Nic Brough -Adaptavist-
Nic Brough -Adaptavist-
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Champions.
Get recognized
April 1, 2015

I think you'd need to extend the LDAP connector in Crowd, as implied by https://confluence.atlassian.com/display/CROWD/LDAP+Object+Structures

Like
Reply

Suggest an answer

Log in or Sign up to answer
Jira
Jira
TAGS
AUG Leaders

Atlassian Community Events

    See all events
    Community
    Forums
    FAQs Forums guidelines
    Learning
    About learning Resources
    Events
    Champions
    Copyright © 2025 Atlassian
    Privacy Policy Notice at Collection Terms Security