-
Suggestion
-
Resolution: Fixed
-
None
Issue Summary
Versions of logback used in Bitbucket DC 8.19 (LTS), 9.4 (LTS), contain vulnerabilities: CVE-2024-12789 and CVE-2024-12801.
Expected Results
Update logback versions to patch CVE-2024-12789 and CVE-2024-12801.
- Update logback in Bitbucket DC 8.19 to 1.3.15+
- Update logback in Bitbucket DC 9.4 to 1.5.13+