This page last changed on Nov 18, 2007 by smaddox.

9 November 2007

Atlassian is proud to announce the release of Confluence 2.6.1. This is a highly recommended upgrade from 2.6, because it fixes some security flaws which may affect Confluence instances in a public environment. We will release more details of the security fixes within a few days, giving our customers a chance to upgrade before the details are made public. This point release also includes more than 40 other fixes and improvements.

We're especially glad that anonymous comments will no longer show the profile picture of the previous commenter, and newly-created spaces no longer seem to have been created by an anonymous user. The {excerpt} and {excerpt-include} macros now behave better. And we've fixed some issues with internationalisation.

There's a complete list of fixes below.

You can download Confluence 2.6.1 from the download centre.

Security Advisory 19 November 2007
We have now published the details of the security vulnerabilities, which are fixed in Confluence 2.6.1. Please refer to the security advisory for more information.

Upgrading from a previous version of Confluence

Upgrading Confluence should be fairly straightforward. Please read the upgrade instructions. We strongly recommend that you back up your confluence.home directory and database before upgrading!

Updates and fixes in this release

Errors were reported by the JIRA trusted connection.

  • APP_UNKNOWN; Unknown Application: {0}; ["confluence:4557196"]
JIRA Issues (50 issues)
Type Key Summary Priority Status Resolution
Bug CONF-9960 Missing files from the Confluence 2.6.1 standalone zip file Minor Resolved Fixed
Bug CONF-9949 Confluence 2.6.1 bundled Tomcat missing the java 1.4 compatibility jar Critical Resolved Fixed
Bug CONF-9824 Macros returning null from getBodyRenderMode() cause page edits to fail Blocker Closed Fixed
Bug CONF-9799 atlassian-confluence.log not generated in Confluence 2.6 standalone Critical Resolved Fixed
Bug CONF-9760 Confluence 2.6.0 needs dependency cleanup Minor Closed Fixed
Bug CONF-9732 User migration JSP script for LDAP intergation is not compatible with JDK 1.4 Major Resolved Fixed
Bug CONF-9718 DWR debug mode is enabled Major Resolved Fixed
Bug CONF-9714 !! wiki notation doesn't seem to work for attached bmps in 2.6 Minor Resolved Fixed
Bug CONF-9704 Security Issue: XSS in wiki exception error page Major Resolved Fixed
Bug CONF-9700 Plugin repository not available on websphere 5.1.10 Major Resolved Fixed
Bug CONF-9686 Mail is not send by confluence for page updates Major Closed Fixed
Bug CONF-9671 Duplicate javamail / mail JARs in different version Major Resolved Fixed
Bug CONF-9667 Anonymous comments display user image of previous non-anonymous commenter Critical Resolved Fixed
Bug CONF-9662 Migrating attachments from file system to database presents a javascript error: response has no properties Major Closed Fixed
Bug CONF-9622 Newly created spaces appear to have been created by "Anonymous" Major Resolved Fixed
Bug CONF-9590 ConfluenceEntityObject.log is not static? Major Resolved Fixed
Bug CONF-9568 NullPointerException occuring in DefaultReferralManager Major Resolved Fixed
Bug CONF-9565 NullPointerException occuring in StylesheetAction Major Resolved Fixed
Bug CONF-9560 Cross-site scripting vulnerability in 500page.jsp Blocker Resolved Fixed
Bug CONF-9536 Selecting "site default" as preferred language results in alternating behavior Major Resolved Fixed
Task CONF-9502 Explain inclusion/exclusion of wiki markup (formatting, images, links) in excerpt and excerpt-include macros Major Closed Fixed
Bug CONF-9497 Notifications for pages whose titles contain special characters have broken "Add Comment" links. Minor Resolved Fixed
Bug CONF-9489 The Excerpt Macro no longer works in comments Major Resolved Fixed
Bug CONF-9477 Userlister macro ":groups=" option should not display all users when incorrectly specified or no group exists, and should accept ":group=" parameter Minor Resolved Fixed
Bug CONF-9456 XSS Bug in printable link display Critical Resolved Fixed
Bug CONF-9454 Pages created with restrictions show as created by Anonymous Major Resolved Fixed
Bug CONF-9436 NPE adding page with metadata macro on CAC Major Resolved Fixed
Bug CONF-9431 Bandana cache not flushed when site backup restored Major Resolved Fixed
Bug CONF-9392 StackOverflowError in ConfluenceLinkResolver.extractLinkTextList Major Resolved Fixed
Improvement CONF-9330 Display the Server ID string in the Setup Wizard Major Resolved Fixed
Bug CONF-9209 XSS in image wiki markup Major Resolved Fixed
Improvement CONF-9164 Clean up poorly formatted (bad) properties in ConfluenceActionSupport.properties Trivial Closed Fixed
Bug CONF-9151 Excerpt macro now rendered with HTML paragraph tag Major Resolved Fixed
Bug CONF-9099 the 'Insert Table' popup is full-screen wide Trivial Resolved Fixed
Bug CONF-9076 Underlining mnemonic missing from "Edit" and "View" tabs on pages using default theme Trivial Resolved Fixed
Bug CONF-8983 Excerpt-include macro does not display images. Major Resolved Fixed
Bug CONF-8866 Shortcut link values are double URL-escaped Major Resolved Fixed
Bug CONF-8826 Recently updated doesn't handle anonymous changes correctly Critical Resolved Fixed
Bug CONF-8701 if an {excerpt} includes links, the {excerpt-include} macro does not render them Major Resolved Fixed
Bug CONF-8673 Missing i18n keys for dashboard's recently updated message Trivial Resolved Fixed
Bug CONF-8672 Missing i18 keys for "Choose Owner" Trivial Resolved Fixed
Bug CONF-8671 Missing i18 keys for Add label Trivial Resolved Fixed
Bug CONF-8669 i18n keys for Confluence Daily Report HTML mail missing Minor Resolved Fixed
Bug CONF-8534 Using excerpt-include doesn't render the body in the {excerpt} macro when it contains {note} or {code} or {noformat} Major Resolved Fixed
Bug CONF-8004 Missing I18N-key for Index Update Task Items Trivial Resolved Fixed
Bug CONF-7378 "Remember me" does not work with sun application servers Major Resolved Fixed
Bug CONF-7127 Can't edit page when watchers include an LDAP user without an email address Major Resolved Fixed
Bug CONF-6586 Attachment links broken in text from include-excerpt macro Major Resolved Fixed
Task CONF-5088 Functional tests should test typical Atlassian User configuration Major Closed Fixed
Bug CONF-4753 Excerpt macro does not work when placed in a heading. Major Resolved Fixed

Document generated by Confluence on Jul 09, 2010 01:10