Bitbucket Server security advisories
Release notes
- Upgrade matrix
- Bitbucket Mesh compatibility matrix
- Bitbucket Data Center 9 release notes
- Bitbucket Data Center and Server 8 release notes
- Bitbucket Server 7 release notes
- Bitbucket Server 6 release notes
- Bitbucket Server 5 release notes
- Bitbucket Server 4 release notes
- Older releases
- Bitbucket Server security advisories
On this page
In this section
- Stash security advisory 2012-09-04
- Stash security advisory 2014-02-26
- Bitbucket Server security advisory 2016-09-21
- Bitbucket Server security advisory 2017-01-24
- Bitbucket Server security advisory 2018-03-21
- Bitbucket Data Center Security Advisory 2019-05-22
- Bitbucket Server security advisory 2019-09-18
- Bitbucket Server Security Advisory 2020-01-15
- Multiple Products Security Advisory - Unrendered unicode bidirectional override characters - CVE-2021-42574 - 2021-11-01
- Multiple Products Security Advisory - Log4j Vulnerable To Remote Code Execution - CVE-2021-44228
- Multiple Products Security Advisory - Hazelcast Vulnerable To Remote Code Execution - CVE-2016-10750
- Bitbucket Server and Data Center Advisory 2022-08-24
- Bitbucket Server and Data Center Security Advisory 2022-11-16
Related content
- No related content found
Finding and reporting a security vulnerability
Atlassian's channel for reporting security issues is detailed in Report a vulnerability.
Publication of security advisories
Atlassian's approach to publishing security advisories is detailed in Security Advisory Publishing Policy.
Severity levels
Atlassian's scale for measuring security issues is detailed in Severity Levels for Security Issues.
Our patch policy
Atlassian's approach to releasing patches is detailed in our Security Patch Policy.
Security advisories
- Bitbucket Server and Data Center Security Advisory 2022-11-16
- Bitbucket Server and Data Center Advisory 2022-08-24
- Multiple Products Security Advisory - Hazelcast Vulnerable To Remote Code Execution - CVE-2016-10750
- Multiple Products Security Advisory - Log4j Vulnerable To Remote Code Execution - CVE-2021-44228
- Multiple Products Security Advisory - Unrendered unicode bidirectional override characters - CVE-2021-42574 - 2021-11-01
- Bitbucket Server Security Advisory 2020-01-15
- Bitbucket Server security advisory 2019-09-18
- Bitbucket Data Center Security Advisory 2019-05-22
- Bitbucket Server security advisory 2018-03-21
- Bitbucket Server security advisory 2017-01-24
- Bitbucket Server security advisory 2016-09-21
- Stash security advisory 2014-02-26
- Stash security advisory 2012-09-04
Last modified on Oct 25, 2021
In this section
- Stash security advisory 2012-09-04
- Stash security advisory 2014-02-26
- Bitbucket Server security advisory 2016-09-21
- Bitbucket Server security advisory 2017-01-24
- Bitbucket Server security advisory 2018-03-21
- Bitbucket Data Center Security Advisory 2019-05-22
- Bitbucket Server security advisory 2019-09-18
- Bitbucket Server Security Advisory 2020-01-15
- Multiple Products Security Advisory - Unrendered unicode bidirectional override characters - CVE-2021-42574 - 2021-11-01
- Multiple Products Security Advisory - Log4j Vulnerable To Remote Code Execution - CVE-2021-44228
- Multiple Products Security Advisory - Hazelcast Vulnerable To Remote Code Execution - CVE-2016-10750
- Bitbucket Server and Data Center Advisory 2022-08-24
- Bitbucket Server and Data Center Security Advisory 2022-11-16
Related content
- No related content found
Powered by Confluence and Scroll Viewport.