Bitbucket Server security advisories
Release notes
- Upgrade matrix
- Bitbucket Mesh compatibility matrix
- Bitbucket Data Center 9 release notes
- Bitbucket Data Center and Server 8 release notes
- Bitbucket Server 7 release notes
- Bitbucket Server 6 release notes
- Bitbucket Server 5 release notes
- Bitbucket Server 4 release notes
- Older releases
- Bitbucket Server security advisories
On this page
In this section
- Stash security advisory 2012-09-04
- Stash security advisory 2014-02-26
- Bitbucket Server security advisory 2016-09-21
- Bitbucket Server security advisory 2017-01-24
- Bitbucket Server security advisory 2018-03-21
- Bitbucket Data Center Security Advisory 2019-05-22
- Bitbucket Server security advisory 2019-09-18
- Bitbucket Server Security Advisory 2020-01-15
- Multiple Products Security Advisory - Unrendered unicode bidirectional override characters - CVE-2021-42574 - 2021-11-01
- Multiple Products Security Advisory - Log4j Vulnerable To Remote Code Execution - CVE-2021-44228
- Multiple Products Security Advisory - Hazelcast Vulnerable To Remote Code Execution - CVE-2016-10750
- Bitbucket Server and Data Center Advisory 2022-08-24
- Bitbucket Server and Data Center Security Advisory 2022-11-16
Related content
- Javascript Error when accessing Issues link in Project Navigation after Upgrade
- JVM Segfault (SIGSEGV) After Plugin Initialisation
- SIGSEGV Segmentation Fault JVM Crash
- Uncaught QuotaExceededError displays in browser using Jira server
- Character Encoding Issues when using JASIG CAS Authenticator
- JIRA Agile error during page load - curl already exists
- How to fetch the Team name from the comments by using Regex
- JIRA Agile is currently unavailable error when Restoring the JIRA Cloud backup to JIRA 6.4.5 with JIRA Agile 6.7.4
- Error "Field with id' xxx' and name 'Team' does not support operation 'add' Supported operation(s) are: 'set'" on Jira Align Connector
- Configure the look and feel of Jira applications
Finding and reporting a security vulnerability
Atlassian's channel for reporting security issues is detailed in Report a vulnerability.
Publication of security advisories
Atlassian's approach to publishing security advisories is detailed in Security Advisory Publishing Policy.
Severity levels
Atlassian's scale for measuring security issues is detailed in Severity Levels for Security Issues.
Our patch policy
Atlassian's approach to releasing patches is detailed in our Security Patch Policy.
Security advisories
- Bitbucket Server and Data Center Security Advisory 2022-11-16
- Bitbucket Server and Data Center Advisory 2022-08-24
- Multiple Products Security Advisory - Hazelcast Vulnerable To Remote Code Execution - CVE-2016-10750
- Multiple Products Security Advisory - Log4j Vulnerable To Remote Code Execution - CVE-2021-44228
- Multiple Products Security Advisory - Unrendered unicode bidirectional override characters - CVE-2021-42574 - 2021-11-01
- Bitbucket Server Security Advisory 2020-01-15
- Bitbucket Server security advisory 2019-09-18
- Bitbucket Data Center Security Advisory 2019-05-22
- Bitbucket Server security advisory 2018-03-21
- Bitbucket Server security advisory 2017-01-24
- Bitbucket Server security advisory 2016-09-21
- Stash security advisory 2014-02-26
- Stash security advisory 2012-09-04
Last modified on Oct 25, 2021
In this section
- Stash security advisory 2012-09-04
- Stash security advisory 2014-02-26
- Bitbucket Server security advisory 2016-09-21
- Bitbucket Server security advisory 2017-01-24
- Bitbucket Server security advisory 2018-03-21
- Bitbucket Data Center Security Advisory 2019-05-22
- Bitbucket Server security advisory 2019-09-18
- Bitbucket Server Security Advisory 2020-01-15
- Multiple Products Security Advisory - Unrendered unicode bidirectional override characters - CVE-2021-42574 - 2021-11-01
- Multiple Products Security Advisory - Log4j Vulnerable To Remote Code Execution - CVE-2021-44228
- Multiple Products Security Advisory - Hazelcast Vulnerable To Remote Code Execution - CVE-2016-10750
- Bitbucket Server and Data Center Advisory 2022-08-24
- Bitbucket Server and Data Center Security Advisory 2022-11-16
Related content
- Javascript Error when accessing Issues link in Project Navigation after Upgrade
- JVM Segfault (SIGSEGV) After Plugin Initialisation
- SIGSEGV Segmentation Fault JVM Crash
- Uncaught QuotaExceededError displays in browser using Jira server
- Character Encoding Issues when using JASIG CAS Authenticator
- JIRA Agile error during page load - curl already exists
- How to fetch the Team name from the comments by using Regex
- JIRA Agile is currently unavailable error when Restoring the JIRA Cloud backup to JIRA 6.4.5 with JIRA Agile 6.7.4
- Error "Field with id' xxx' and name 'Team' does not support operation 'add' Supported operation(s) are: 'set'" on Jira Align Connector
- Configure the look and feel of Jira applications
Powered by Confluence and Scroll Viewport.