This page last changed on Jul 03, 2008 by smaddox.

3 July 2008

Confluence 2.8.2 is a recommended upgrade which fixes some security flaws and other bugs. Please refer to the security advisory for details of the security vulnerabilities, risk assessment and mitigation strategies.

This release fixes the 'remember me' problem encountered when using Confluence with Tomcat 5.5.26 or Tomcat 6, where logins are not remembered.

Confluence administrators will see a new link on the user profile screen, allowing them to move directly to the user management screen for that user.

This release also addresses some performance bugs:

  • Label links, as well as the label summary pages, now include the 'nofollow' attribute to prevent search engines like Google from indexing them.
  • We have increased the size of the UI templates cache, which should reduce the number of times Confluence needs to load resources.
  • CSS caching has been improved. (Refer to CONF-11755 if you'd like to know the details.)
  • When generating a URL for the multiple label filter, Confluence now sorts the labels in the URL alphabetically, ensuring that there is just one URL for each filter instead of possible multiple URLs. This should reduce the load on the server when search engine crawlers visit the Confluence site, because the crawlers no longer need to index multiple URLs.

The JIRA Issues macro now has improved caching. When trusted communication was first introduced, Confluence did not cache results for anonymous users or results retrieved using trusted communications. With Confluence 2.8.2, caching is implemented for both those cases. This fix should improve the performance of your JIRA site, because Confluence no longer needs to access the JIRA site as often.

There's a complete list of fixes below. Click a specific issue to see details of the fix.

Don't have Confluence 2.8 yet?

Take a look at the new features and other highlights in the Confluence 2.8 Release Notes.

Upgrading from a Previous Version of Confluence

Upgrading Confluence should be fairly straightforward. Please read the Confluence 2.8.2 Upgrade Notes. We strongly recommend that you back up your confluence.home directory and database before upgrading.

Updates and Fixes in this Release

Atlassian JIRA (24 issues)
T Key Summary Pr Status Res
Task CONF-12228 Security Vulnerability in xwork, need to update to fixed version Major Resolved FIXED
Bug CONF-12056 Hot Referrers section in page info has broken links Major Resolved FIXED
Improvement CONF-12011 Multiple-label filter generates redundant URLs Major Closed FIXED
Bug CONF-11985 XSS vulnerability in create/edit/copy page and blogpost actions Blocker Resolved FIXED
Bug CONF-11977 Customised Left Navigation Theme displays "test" next to user icon. Major Resolved FIXED
Improvement CONF-11940 Add nofollow to label links so search engines like google don't index them Major Resolved FIXED
Bug CONF-11864 Sort order in People Directory makes no sense Major Resolved FIXED
Bug CONF-11833 Global logos don't refresh/no longer display in Confluence 2.8 Major Resolved FIXED
Bug CONF-11831 Daily notification email: The space URL isn't interpreting ${space.key} Major Resolved FIXED
Improvement CONF-11816 Improve performance by specifying a larger size for the UI Templates cache Major Resolved FIXED
Bug CONF-11776 PDF export does not render panel macro background-color or title alignment Minor Resolved FIXED
Bug CONF-11765 "unable to find resource" error logged during an export Trivial Resolved FIXED
Improvement CONF-11755 Caching of some CSS imported by combined.css isn't ideal, uses space cache counter instead of global Minor Closed FIXED
Improvement CONF-11587 Add link from User homepage to user admin page if current user is admin Major Resolved FIXED
Bug CONF-11539 JIRA issues macro should cache results for anonymous users when using a trusted connection Minor Resolved FIXED
Bug CONF-11410 Some users' logins are not remembered using Tomcat Critical Resolved FIXED
Bug CONF-11360 Exporting space in PDF - SOAP API doesn't interpret $dateFormatter, while exporting using a browser does Minor Resolved FIXED
Bug CONF-11338 Custom global logo image height is not respected Minor Closed FIXED
Bug CONF-11137 XSS vulnerability in pagepicker.action and spacepagepicker.action Major Resolved FIXED
Bug CONF-9273 headlines (h1, h2,..) included inside code macro are rendered from toc and toc-zone macro Major Resolved FIXED
Bug CONF-8975 Error creating Indexes during setup or site restore: "Column name 'ENTITY_ID' does not exist in target table" Major Resolved FIXED
Bug CONF-8835 Change the sample URL for jiraissues macro usage in the Confluence's Notation Guide Major Resolved FIXED
Bug CONF-8220 adding option of title to noformat macro breaks the toc macro and interferes with toc-zone macro Major Resolved FIXED
Bug CONF-4157 CamelCase links are not detected by Incoming Links Major Resolved FIXED


Document generated by Confluence on Aug 07, 2008 19:05