Confluence 3.3.3 Release Notes

21 September 2010

Confluence 3.3.3 is a recommended upgrade which fixes some security flaws and other bugs. Note that Confluence 3.3.2 was an internal release only.

  • Security fixes in Confluence 3.3.3. Please refer to the security advisory for details of the security vulnerabilities, risk assessment and mitigation strategies.
  • Office Connector temporary storage location. When configuring the temporary storage location for the Office Connector's View File macro, you can no longer enter a specific file location via the Confluence Administration Console. Instead, the Administration Console offers three options, as described below. If you have previously entered a specific file location, the location will still be valid. However, if you want to change the location you will need to choose one of the three options described below, to hold the temporary file:
    • In memory.
    • In your Confluence Home directory.
    • In a file location that you can specify in the file, located in the Office Connector JAR. Instructions are in the documentation.
  • Preview pane now shows full content. When previewing a wiki page in Firefox, the preview pane will now show the entire content of the page. This fixes a problem experienced with Firefox 3.6.7 and later, caused by a change in Firefox.
  • Other noteworthy fixes. The complete list of bug fixes is at the bottom of this page. Highlights:
    • You can now set page restrictions when copying a page.
    • Confluence will retain your setting when you turn on the 'Did You Mean' feature in the search.
    • When you edit a wiki page in Word, your changes are now saved.

Don't have Confluence 3.3 yet?

Take a look at the new features and other highlights in the Confluence 3.3 Release Notes.

Release Notices

  • Security advisory: This release fixes some security flaws. Please refer to the security advisory for details of the security vulnerabilities, risk assessment and mitigation strategies.
  • Upgrading from a previous version of Confluence: Upgrading Confluence should be fairly straightforward. Please read the Confluence 3.3.3 Upgrade Notes. We strongly recommend that you back up your confluence.home directory and database before upgrading.

Updates and Fixes in this Release

T Key Summary P Status Resolution
Bug CONF-21905 CLONE - Editor preview doesn't expand to show complete content Highest Resolved Tracked Elsewhere
Bug CONF-20671 XSRF vulnerability in the Mail Page plugin Highest Resolved Fixed
Bug CONF-20670 XSS vulnerability in the Office Connector Highest Resolved Fixed
Bug CONF-20669 Confluence should not allow configuration of Office Connector temporary storage location Highest Resolved Fixed
Bug CONF-20668 Path traversal vulnerability in various Confluence actions Highest Resolved Fixed
Bug CONF-20441 Editor preview doesn't expand to show complete content Highest Resolved Fixed
Bug CONF-20584 Cannot set page restrictions when copying a page High Resolved Fixed
Bug CONF-20487 Did You Mean option not retained in 3.3 High Resolved Fixed
Bug CONF-20339 Edit in "Page" word feature causes nullpointer exception. High Resolved Fixed
Bug CONF-19738 bootstrapPluginManager is still available to plugins system - is not thrown away. High Resolved Fixed
Bug CONF-20738 Ziputility adds files with wrong name Medium Resolved Fixed
Bug CONF-20616 Edit in Word does not work when a custom authenticator is configured Medium Resolved Fixed
Bug CONF-20298 NullPointerException error logged by scheduled office connector cleanup job at 02:00 Medium Resolved Fixed
Bug CONF-12571 JIRA Issue Macro displays too wide, doesn't auto-scroll properly Medium Resolved Fixed
Bug CONF-25256 SCN > Wiki: The mark and the description for the font options are intersected Low Resolved Fixed
Bug CONF-20754 License Details: Links in error message are broken. Low Resolved Fixed
Bug CONF-20617 Cannot build REST documentation for Confluence 3.3.1 Low Resolved Fixed
Bug CONF-20343 sudo is decorated with global decorator Low Resolved Fixed
Bug CONF-14628 pages/create(blogpost|page).action with a spaceKey containing the null character causes org.springframework.dao.DataIntegrityViolationException Low Resolved Fixed

Was this helpful?

Thanks for your feedback!

Why was this unhelpful?

Have a question about this article?

See questions about this article

Powered by Confluence and Scroll Viewport