24 January 2008
Presented with pleasure by the Atlassian Confluence team: Confluence 2.7.1 is a recommended upgrade which fixes a security flaw and other bugs, and brings a couple of improvements.
We have identified and fixed an XSS (cross-site scripting) security flaw which may affect Confluence instances in a public environment. For details, please refer to the security advisory.
Recording of authorship and history for page attachments is improved, so that attachment history is now retained after operations such as editing the attachment or moving it to a new page.
A new option on the Export Space screen allows administrators to export all pages to XML even when page-restrictions deny the administrator access to some of the pages.
This release also fixes problems in the following areas:
- The SOAP API, which was broken in Confluence 2.7.0.
- Internationalisation (support for different languages).
- Case-sensitivity for usernames and group names when using LDAP integration, and problems with upper-case letters in usernames when applying space permissions.
There's a complete list of fixes below. Click a specific issue to see details of the fix, and to download any patches where relevant.
Confluence 2.7.1 is available from the download centre.
Upgrading from a previous version of Confluence
Upgrading Confluence should be fairly straightforward. Please read the upgrade instructions. We strongly recommend that you back up your
confluence.home directory and database before upgrading!