Forum Discussion

m4riannelee's avatar
m4riannelee
New Contributor
3 years ago

What is Smartbear's response to CVE-2021-44228 log4j vulnerability for Zephyr Squad?

What is Smartbear's response to CVE-2021-44228 log4j vulnerability for Zephyr Squad (on Jira server)? Is Zephyr Squad impacted? If so, how can this be mitigated and is there a fix?  
Data Center
Server
  • sanjeevpande's avatar
    sanjeevpande
    3 years ago

    Hello m4riannelee ,

     

    Zephyr Squad has released a new version for Cloud and Server/DC apps with the fixes which are as follows:

    Zephyr Squad Cloud: version 8.0.1-hf4

    Zephyr Squad Server/DC: 

    • Jira 8.x
      • version 6.2.6
    • Jira 7.x
      • version 4.8.5

    Capture for Jira:

    • Jira 8.x
      • version 3.1.1
    • Jira 7.x
      • version 2.9.22

     

    We request you to updgrade your apps to these versions so that the log4j2 vulnerability is mitigated.

     

    Thank you.

     

    Regards,

    Sanjeev Pande

     

sanjeevpande's avatar
sanjeevpande
Staff
3 years ago

Hello m4riannelee ,

 

Zephyr Squad has released a new version for Cloud and Server/DC apps with the fixes which are as follows:

Zephyr Squad Cloud: version 8.0.1-hf4

Zephyr Squad Server/DC: 

  • Jira 8.x
    • version 6.2.6
  • Jira 7.x
    • version 4.8.5

Capture for Jira:

  • Jira 8.x
    • version 3.1.1
  • Jira 7.x
    • version 2.9.22

 

We request you to updgrade your apps to these versions so that the log4j2 vulnerability is mitigated.

 

Thank you.

 

Regards,

Sanjeev Pande