It's not the same without you

Join the community to find out what other Atlassian users are discussing, debating and creating.

Atlassian Community Hero Image Collage

Security alert for Atlassian products

Dear Team,

I got this below security alert. Kindly let me know how can i fix this security bug.


Security advisory for
Confluence, Bamboo, FishEye, Crucible, and Crowd


We are writing to inform you of critical security vulnerabilities that affects all supported versions of Confluence up to and including 5.5, Bamboo up to and including 5.5,FishEye from 3.0 up to and including 3.4,Crucible from 3.0 up to and including 3.4, and Crowd up to and including 2.7.

How do you fix it?
Atlassian OnDemand  customers have been upgraded with the fix for the issue described in this advisory.
Customers who have downloaded and installed Atlassian products, follow the instructions provided in the detailed security advisories:

Confluence Security Advisory - 

Bamboo Security Advisory - 

FishEye Security Advisory - 
Crucible Security Advisory - 

Crowd Security Advisory - 

If you have questions or concerns, please raise a support request. One of our support engineers will be happy to help you. 

Kind regards,


This very important email was sent by Atlassian, to keep you informed about changes to your products or accounts.

Copyright 2014 Atlassian Pty Ltd. All rights reserved.
We are located at 341 George Street, Sydney, NSW,
Australia and here is our Privacy Policy. 



Shailesh Kumar

Mo +91 9717804346

2 answers

I don't know what do you want?

There is a critical Security-Bug. Atlassian got a Fix.

If your are using one of the products listed above, you have to either update your product or install the patch.

For every affected product is a seperated documentation-page on how to install the patch.

Furthermore in that mail:
"If you have questions or concerns, please raise a support request. One of our support engineers will be happy to help you."

So what do you exactly want to know?

Kind regards

Mirek Community Leader May 22, 2014

I suppose that this was a support ticket. I remember that if you create a ticket there is an option to create a new Question on Atlassian Answers. Maybe this is how it was created.

However by only reading this maile there is "How do you fix it?" section which is describing all the details related to every affected application, so asking how to fix it is not a good question...

I always wonder about the mind-set of people who do things like this. They get an email saying "there's a possible problem, here is how to fix it", so they ask a question instead of reading it.

Fair enough if they have questions about the instructions, but not bothering to read it in the first place, honestly <shakes head in despair>

Heck, even I RTFM when I get stuck before asking for help.

Hi Shailesh Kumar,

Please follow the instruction given on Security Advisory of the particular product to know more about fixing and patching the bugs.

Suggest an answer

Log in or Sign up to answer
Community showcase
Published in Jira Align

Best Practices in Jira Align

Hello Jira Align customers! In order to better serve you on your journey with Jira Align, the Community team has worked with the Jira Align team to curate the content in this collection to better s...

66 views 0 2
Read article

Community Events

Connect with like-minded Atlassian users at free events near you!

Find an event

Connect with like-minded Atlassian users at free events near you!

Unfortunately there are no Community Events near you at the moment.

Host an event

You're one step closer to meeting fellow Atlassian users at your local event. Learn more about Community Events

Events near you