This page last changed on Sep 16, 2008 by smaddox.

8 September 2008

Confluence 2.9.1 is a recommended upgrade which fixes some security flaws and other issues.

Please refer to the security advisory for details of the security vulnerabilities, risk assessment and mitigation strategies.

This release also addresses an issue relating to contributor filtering with LDAP. In the previous version, the search function was not able to filter results by authors from an LDAP directory. This fix requires an upgrade action; see the Confluence 2.9.1 Upgrade Notes for more information.

There's a complete list of fixes below. Click a specific issue to see details of the fix.

Don't have Confluence 2.9 yet?

Take a look at the new features and other highlights in the Confluence 2.9 Release Notes.

Upgrading from a Previous Version of Confluence

Upgrading Confluence should be fairly straightforward. Please read the Confluence 2.9.1 Upgrade Notes. We strongly recommend that you back up your confluence.home directory and database before upgrading.

Updates and Fixes in this Release

JIRA Issues (28 issues)
Type Key Summary Priority Status Resolution
Bug CONF-7615 XSS bug: usernames not HTML-encoded in all places Critical Resolved Fixed
Bug CONF-12860 Hidden pages' content can be viewed without permission using diffpages.action Critical Resolved Fixed
Task CONF-12770 Update French and German Translations Critical Resolved Fixed
Bug CONF-10636 Labels Lost during Import Critical Resolved Fixed
Bug CONF-12748 2.8 default theme does not render edit, tools, and Add menus - cut off halfway Critical Resolved Fixed
Bug CONF-12845 View Wiki Markup availabe on Page Restricted pages Critical Resolved Fixed
Bug CONF-12859 Hidden pages' content can be viewed without permission using copypage.action Critical Resolved Fixed
Bug CONF-12911 Pages that inherit page restrictions are not respecting those restrictions after upgrade to Confluence 2.9 Critical Resolved Fixed
Bug CONF-12856 Plugins can lose access to resources in inner jars Critical Resolved Fixed
Bug CONF-12785 Confluence 2.9 Installer does not work when installed as service Critical Resolved Fixed
Bug CONF-12714 Corrupt plugin jar can cause entire system to fail to start with java.lang.IllegalStateException: error in opening zip file Critical Resolved Fixed
Bug CONF-11949 Some words are not translated in French Major Resolved Fixed
Bug CONF-10769 LDAP users are added into People Directory only when they click on their Preferences Major Resolved Fixed
Bug CONF-12666 Bookmarks labels can't be added/edited Major Resolved Fixed
Bug CONF-12766 Links to specific comments on a page do not jump to the comment location after the page is loaded Major Resolved Fixed
Bug CONF-11815 Select template link not translated in French language pack. Major Resolved Fixed
Bug CONF-12813 Recently-updated macro can hang Dashboard if images are Corrupt Major Resolved Fixed
Bug CONF-12787 Rich Text full screen editor does not display any content or tools in Confluence 2.9 Major Resolved Fixed
Bug CONF-12710 'Recent Changes' in page info contains same author multiple times Major Resolved Fixed
Bug CONF-12717 TOC plugin cannot work with umlaute character Major Resolved Fixed
Bug CONF-12711 Searches throw IllegalArgumentException when indexing language is French Major Resolved Fixed
Bug CONF-12811 The TrustedApplicationsFilter doesn't work for /rpc/* URLs Major Resolved Fixed
Bug CONF-13275 Ognl exception and Homepage set to blank when editing space details Major Resolved Fixed
Task CONF-12708 Review and release contributor filter repair note for Confluence 2.9.1 Minor Resolved Fixed
Bug CONF-10415 When viewing older version of a page, the breadcrumbs have 'undefined space' in them Minor Resolved Fixed
Bug CONF-12706 'Edit My Profile' breadcrumb menu produces 'com.atlassian.confluence.extra.userinfo.EditUserInfoAction.action.name' in menu instead of friendly name Minor Resolved Fixed
Bug CONF-12790 The "no results found" message for the Search should include the author filter in the suggestions Minor Resolved Fixed
Bug CONF-10558 IE7 insert and delete row problems in the rich text editor Minor Resolved Fixed


Document generated by Confluence on Mar 16, 2011 18:41