This page last changed on Jun 18, 2010 by ggaskell.

18 June 2010

The Atlassian JIRA team is proud to announce the release of JIRA 4.1.2. This point release is a highly recommended upgrade as it contains important fixes to security vulnerabilities — please refer to the JIRA Security Advisory 2010-06-18 for details.

This point release also contains over 40 fixes and improvements, notably including:

  • New 'Comment' button — You can now add comments via a 'Comment' button at the end of the 'View Issue' page. Clicking this button opens a large text box immediately below the last comment, into which you can add your new comment. This function is useful when you want to reply to recently added comments. For more information, please refer to Commenting on an Issue.

  • 'HttpOnly' Session Cookies — To improve the security of JIRA, JIRA standalone distributions (version 4.1.2 and later) now implement 'HttpOnly' session ID cookies, as indicated in our Security Advisory. Please refer to our Preventing Security Attacks guide for details on implementing 'HttpOnly' session ID cookes for JIRA EAR-WAR distributions.

Please also note that the bundled FishEye plugin and Bamboo plugin have been updated with security improvements, which are also mentioned in our Security Advisory.

JIRA 4.1.2 is of course free to all customers with active JIRA software maintenance.

Don't have JIRA 4.1 yet?
Take a look at all the new features in the JIRA 4.1 Release Notes and see what you are missing out on!

Upgrading from a Previous Version of JIRA

If you are upgrading, please read the JIRA 4.1.2 Upgrade Guide.

Updates and Fixes in this Release

JIRA 4.1.2 includes the following updates and bug fixes:

JIRA Issues (53 issues)
Type Key Summary Priority Status
New Feature JRA-21531 Support Safari 5 Resolved
Improvement JRA-21333 JIRA Calendar Plugin page should state it is a Plugin 2 plugin Resolved
Improvement JRA-21157 Current Jira create issues button and popdown unusable in Firefox with projects with long names Closed
Improvement JRA-21149 Put a new security log into JIRA so that important events can be specifically logged Resolved
Improvement JRA-21033 Support HttpOnly cookies Resolved
New Feature JRA-20673 Include a list of all known JIRA application properties in the System Info page Resolved
Improvement JRA-15940 Priority interface should expose a method to get the status colour/color Resolved
Improvement JRA-11682 Put an 'Add comment' link at the bottom of the page. Resolved
Bug JRA-21624 Set of critical security vulnerabilities Critical Resolved
Bug JRA-21322 Attach Screenshot applet no longer works in 4.1.2 Critical Resolved
Bug JRA-21208 Tomcat supportability on Supporte Platform page needs to be fixed Critical Resolved
Bug JRA-20964 Upgrade Link in 4.1 Installer is Broken Critical Resolved
Bug JRA-20963 SSL connector in server.xml incorrect for JIRA 4.1 Standalone Critical Resolved
Bug JRA-20940 JIRA Activity Stream gadget is broken when accessed externally using IE Critical Resolved
Bug JRA-20528 Workflow plugin modules defined in V2 plugins will sometimes not work Critical Resolved
Bug JRA-19851 Cannot authorise "Created vs Resolved Chart" gadget in Confluence Critical Resolved
Bug JRA-21397 View issue layout broken by wiki markup in comments - people and dates box shown in footer Major Resolved
Bug JRA-21363 Voting for issue is not working on FF 3.5 Major Resolved
Bug JRA-21192 JIRA config tool does not like "escaped colons" in the jira-application.properties file Major Resolved
Bug JRA-21190 Broken links in the Windows Installer Major Resolved
Bug JRA-20917 Sperious Warnings Displayed at Start-up Major Resolved
Bug JRA-20776 New comment UI is difficult to use when replying Major Resolved
Bug JRA-20675 Can't vote for issues in JIRA 4.1-rc1 Major Resolved
Bug JRA-20620 The javascript shortenting participants, components and versions performs badly if there's a lot of options (100+) Major Resolved
Bug JRA-20578 Shared filter queries break when users don't have browse permissions for projects in the search query Major Resolved
Bug JRA-20554 Some operations fail with "ERROR: operator does not exist" when JIRA is connected to Postgres 8.3+ Major Resolved
Bug JRA-20417 JIRA Activity Stream gadget displays error in Confluence due to en_GB / en_UK mismatch Major Resolved
Bug JRA-20235 Attach screenshot link doesn't work if group name includes " Major Resolved
Bug JRA-20018 Non-standard HTML is generated when embedding flash movies Major Resolved
Bug JRA-19733 Recently Created Issues Chart is no longer clickable and doesn't show hover information Major Resolved
Bug JRA-19225 "How to Upgrade JIRA" link in JIRA installer is not pointing to right link Major Resolved
Bug JRA-21848 NO automatically generated password for JIRA 4.0.x when password is not filled in Minor Resolved
Bug JRA-21402 AttachScreenshot applet - when you cancel the dialog, you end up with empty screenshot-redirecter.jsp popup Minor Resolved
Bug JRA-21175 Watch Issue doesn't work with Opera Minor Resolved
Bug JRA-21145 When adding comment, if window is narrow, the comment entry box is wider than the window and cannot be scrolled horizontally Minor Resolved
Bug JRA-20968 'Current User Sessions' page should say '1 through x' (not '0 through x') Minor Resolved
Bug JRA-20905 the "next issue arrow" on view issue sits in the spot of the prev issue arrow Minor Resolved
Bug JRA-20837 "ISSUE DOES NOT EXIST" heading should be sentence case Minor Resolved
Bug JRA-20712 Stalkerbar overlaps comment header when permalinks are accessed through browser address bar Minor Resolved
Bug JRA-20657 Multi User Picker autocomplete creates extra spaces in between values when selecting multiple values Minor Resolved
Bug JRA-20638 Voted Issues gadget - clicking "Include resolved issues" toggles "Show the total..." Minor Resolved
Bug JRA-20618 List of available locales is rendered in the JVM locale's language instead of the user's locale Minor Resolved
Bug JRA-20589 It's possible to create users with leading and trailing spaces when signing up for an account Minor Resolved
Bug JRA-20573 User autocomplete displays "Oops! You have already entered the value" error for a non-duplicate value Minor Resolved
Bug JRA-20291 Mac OSX install Movie wonderful - but not current Minor Resolved
Bug JRA-20241 JIRA currently cannot search for colons (:) in text fields or this feature appears to be broken. Minor Resolved
Bug JRA-19910 UserAgentUtilImpl throws NPE when user-agent HTTP header is null Minor Resolved
Bug JRA-15256 Could not find atlassian-jira.log Minor Resolved
Bug JRA-10088 Calendar in date picker gets week numbers wrong Minor Resolved
Bug JRA-21766 Documentation mistake, 'Configure' instead of 'Screen' Trivial Resolved
Bug JRA-20198 Superfluous text in Issue Navigator when a filter is modified in Advanced mode Trivial Resolved
Bug JRA-19714 Misleading error for a deactivated user trying to log into Jira Trivial Resolved
Bug JRA-3436 Image thumbnails not displayed when image content-type is "image/pjpeg" Trivial Resolved


Document generated by Confluence on Mar 27, 2011 18:40