This page last changed on Sep 20, 2010 by smaddox.

21 September 2010

Confluence 3.3.3 is a recommended upgrade which fixes some security flaws and other bugs. Note that Confluence 3.3.2 was an internal release only.

  • Security fixes in Confluence 3.3.3. Please refer to the security advisory for details of the security vulnerabilities, risk assessment and mitigation strategies.
  • Office Connector temporary storage location. When configuring the temporary storage location for the Office Connector's View File macro, you can no longer enter a specific file location via the Confluence Administration Console. Instead, the Administration Console offers three options, as described below. If you have previously entered a specific file location, the location will still be valid. However, if you want to change the location you will need to choose one of the three options described below, to hold the temporary file:
    • In memory.
    • In your Confluence Home directory.
    • In a file location that you can specify in the directories.properties file, located in the Office Connector JAR. Instructions are in the documentation.
  • Preview pane now shows full content. When previewing a wiki page in Firefox, the preview pane will now show the entire content of the page. This fixes a problem experienced with Firefox 3.6.7 and later, caused by a change in Firefox.
  • Other noteworthy fixes. The complete list of bug fixes is at the bottom of this page. Highlights:
    • You can now set page restrictions when copying a page.
    • Confluence will retain your setting when you turn on the 'Did You Mean' feature in the search.
    • When you edit a wiki page in Word, your changes are now saved.

Don't have Confluence 3.3 yet?

Take a look at the new features and other highlights in the Confluence 3.3 Release Notes.

Release Notices

  • Security advisory: This release fixes some security flaws. Please refer to the security advisory for details of the security vulnerabilities, risk assessment and mitigation strategies.
  • Upgrading from a previous version of Confluence: Upgrading Confluence should be fairly straightforward. Please read the Confluence 3.3.3 Upgrade Notes. We strongly recommend that you back up your confluence.home directory and database before upgrading.

Updates and Fixes in this Release

JIRA Issues (19 issues)
Type Key Summary Priority Status Resolution
Improvement CONF-20575 Update Jira Macros Plugin to version 2.8.20, 2 issues fixed in this update Resolved Fixed
Bug CONF-21905 CLONE - Editor preview doesn't expand to show complete content Blocker Resolved Tracked Elsewhere
Bug CONF-20671 XSRF vulnerability in the Mail Page plugin Blocker Resolved Fixed
Bug CONF-20670 XSS vulnerability in the Office Connector Blocker Resolved Fixed
Bug CONF-20669 Confluence should not allow configuration of Office Connector temporary storage location Blocker Resolved Fixed
Bug CONF-20668 Path traversal vulnerability in various Confluence actions Blocker Resolved Fixed
Bug CONF-20441 Editor preview doesn't expand to show complete content Blocker Resolved Fixed
Bug CONF-20584 Cannot set page restrictions when copying a page Critical Resolved Fixed
Bug CONF-20487 Did You Mean option not retained in 3.3 Critical Resolved Fixed
Bug CONF-20339 Edit in "Page" word feature causes nullpointer exception. Critical Resolved Fixed
Bug CONF-19738 bootstrapPluginManager is still available to plugins system - is not thrown away. Critical Resolved Fixed
Bug CONF-20738 Ziputility adds files with wrong name Major Resolved Fixed
Bug CONF-20616 Edit in Word does not work when a custom authenticator is configured Major Resolved Fixed
Bug CONF-20298 NullPointerException error logged by scheduled office connector cleanup job at 02:00 Major Resolved Fixed
Bug CONF-12571 JIRA Issue Macro displays too wide, doesn't auto-scroll properly Major Resolved Fixed
Bug CONF-20754 License Details: Links in error message are broken. Minor Resolved Fixed
Bug CONF-20617 Cannot build REST documentation for Confluence 3.3.1 Minor Resolved Fixed
Bug CONF-20343 sudo is decorated with global decorator Minor Resolved Fixed
Bug CONF-14628 pages/create(blogpost|page).action with a spaceKey containing the null character causes org.springframework.dao.DataIntegrityViolationException Minor Resolved Fixed

Document generated by Confluence on Mar 16, 2011 18:39