Just a heads up: On March 24, 2025, starting at 4:30pm CDT / 19:30 UTC, the site will be undergoing scheduled maintenance for a few hours. During this time, the site might be unavailable for a short while. Thanks for your patience.

×
Create
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Sign up Log in
Product Q&A
See all
Community resources
Top groups
Explore all groups
Community resources
Learn
Community resources
Events
Community resources

When will the bundled AdoptOpenJDK 11.0.11+9 be updated?

Gary Vecchio
Gary Vecchio
I'm New Here
I'm New Here
Those new to the Atlassian Community have posted less than three times. Give them a warm welcome!
Get involved
January 3, 2022

There is currently an open vulnerability in AdoptOpenJDK 11.0.11+9. See CVE-2021-35550

CVE-2021-35550 | Tenable®

 

Answer
Watch
Like Gabriel Bouzard likes this
553 views

1 answer

0 votes
Mahtab
Mahtab
Atlassian Team
Atlassian Team members are employees working across the company in a wide variety of roles.
January 26, 2022

Hi team,

 

As we do not have the ETA and the version of Jira which would include the updated version of AdoptOpenJDK which does not have this vulnerability, to remediate this issue in the meantime, we recommend upgrading Java to a minor release of AdoptOpenJDK 11 which does not have this vulnerability. Bundled Tomcat and Java versions is our document which tracks the Jira versions and the bundled Java and Tomcat. 

Upgrading Java

The best way to do this is to install the desired Java version directly on the Jira hosting machine, instead of upgrading the bundled one, then set the environment variables to make Jira able to utilize that Java. The steps of that procedure can be found on our Change the Java version used by Jira server article. If you are using Windows as a Service, please ensure to update the Java on Tomcat properties of the Service.

Please ensure the upgraded Java version is covered in the JIRA Supported Platforms.

 

Regads,

Mahtab Shahlori

Reply

Suggest an answer

Log in or Sign up to answer
Jira
Jira
TAGS
AUG Leaders

Atlassian Community Events

    See all events