What are the reasons other products then Crowd needs to be upgraded?

This question is in reference to Atlassian Documentation: Crowd Security Advisory 2016-10-19

What are the reasons other products then Crowd needs to be upgraded? Does these products have similar issues with LDAP or is it some type of compatibility thing?

2 answers

1 vote

They have their own "embedded" Crowd which shares a lot of the code with Crowd Server, and presumably the vulnerability is in code that is common to the two systems. 

Take for example JIRA 7.2.1 that was released for a month ago. That version should be safe from this vulnerability. The issues listed on that release include no references to any LDAP issues. Is there an official explanation to this?

Suggest an answer

Log in or Sign up to answer
How to earn badges on the Atlassian Community

How to earn badges on the Atlassian Community

Badges are a great way to show off community activity, whether you’re a newbie or a Champion.

Learn more
Community showcase
Asked 2 hours ago in Confluence

What are the resources that you use to learn more about Atlassian Products?

I am gathering information about resources available for Atlassian product knowledge transferring for a presentation in our local Atlassian User Group. I want to group them in four categories From ...

24 views 2 3
View question

Atlassian User Groups

Connect with like-minded Atlassian users at free events near you!

Find a group

Connect with like-minded Atlassian users at free events near you!

Find my local user group

Unfortunately there are no AUG chapters near you at the moment.

Start an AUG

You're one step closer to meeting fellow Atlassian users at your local meet up. Learn more about AUGs

Groups near you