Create
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Sign up Log in
Products
See all
Community resources
Top groups
Explore all groups
Community resources
Learn
Community resources
Events
Community resources

CVE-2019-11581-

Denis
Denis July 12, 2019

Hi there! There is a question about update accordingly article

https://confluence.atlassian.com/jira/jira-security-advisory-2019-07-10-973486595.html

We decided to upgrade Jira Server v8.0.0 to v8.0.3, also we need to upgrade Jira Service Desk to v4.0.3, accordingly Compatibility Matrix. But in article we saw a note "If you have downloaded and installed Jira Service Desk from version 3.0.0 before 4.2.3, you may be affected.". Does it mean we have to upgrade Jira Server to version v8.2.3 ??? Because Service Desk v4.2.3 compatible with Jira Server v8.2.3.

Thanks in advance!

Answer
Watch
Like Be the first to like this
502 views

1 answer

1 accepted

0 votes
Answer accepted
Thomas Deiler
Thomas Deiler
Community Leader
Community Leader
Community Leaders are connectors, ambassadors, and mentors. On the online community, they serve as thought leaders, product experts, and moderators.
Become a leader
July 13, 2019

Dear @Denis ,

in the security advisory it is written:

Customers who have upgraded Jira Server & Jira Data Center to versions 7.6.14, 7.13.5, 8.0.3, 8.1.2, or 8.2.3 are not affected.

So you can do what you decided.

So long

Thomas

View More Comments
Denis
Denis July 14, 2019

Hi Thomas! Thanks for your reply, but I asked about Jira Service Desk. Now we have upgraded Jira Server to v8.0.3, and also Jira Service Desk to v4.0.3, accordingly compatibility matrix. Is it ok? Or we have to upgrade Jira Service Desk to version 4.2.3 ?

Thanks!

Like
Thomas Deiler
Thomas Deiler
Community Leader
Community Leader
Community Leaders are connectors, ambassadors, and mentors. On the online community, they serve as thought leaders, product experts, and moderators.
Become a leader
July 15, 2019

Dear @Denis ,

Jira itself is affected. JSD is an application using the infrastructure of Jira. So it is pretty fine when you stay at version 8.0.3 that is bound to JSD 4.0.3.

So long

Thomas

Like
Denis
Denis July 15, 2019

Ok, thanks!

Like
Reply

Suggest an answer

Log in or Sign up to answer
Jira Service Desk
Jira Service Management
TAGS
AUG Leaders

Atlassian Community Events

    See all events