Forums
Home Product Q&A Discussion groups Articles Ask a question Search
Learning
Events
Champions

Forums

Articles
Create
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Product Q&A
See all
Community resources
Top groups
Explore all groups
Community resources
Learn
Community resources
Events
Community resources

CVE-2019-1158 is resolved in jira 8.5?

JooHyun Park
JooHyun Park February 1, 2021

Hi, 

I'm asking after looking at the guide below, can I say that the security issue has been solved in jira 8.5? Is the upper version resolved from Jira 8.3?

https://community.atlassian.com/t5/Jira-articles/CVE-2019-11581-Critical-Security-Advisory-for-Jira-Server-and/ba-p/1128241

 

Thanks in advance

Answer
Watch
Like Be the first to like this
793 views

1 answer

1 accepted

0 votes
Answer accepted
Nic Brough -Adaptavist-
Nic Brough -Adaptavist-
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
February 1, 2021

Think of it this way - why would a later version deliberately remove a critical security fix?

Apologies if that sounds a bit snarky, but it was the shortest way to put it without a boring essay question.  Every version after the ones Atlassian say fixes were released in should incorporate the fix, as they're based on the fixed versions.  The fixes might eventually be removed, but only when they're no longer needed!

Reply

Suggest an answer

Log in or Sign up to answer
Jira
Jira
TAGS
AUG Leaders

Atlassian Community Events

    See all events
    Community
    Forums
    FAQs Forums guidelines
    Learning
    About learning Resources
    Events
    Champions
    Copyright © 2025 Atlassian
    Privacy Policy Notice at Collection Terms Security