h3. Issue summary
Apache Tomcat should be upgraded to 8.5.79 or a superior version to fix [CVE-2022-29885|https://nvd.nist.gov/vuln/detail/CVE-2022-29885]
h3. Environment
Bamboo 7, 8
h3. Steps to Reproduce
h3. Expected Results
apache-tomcat 8.5.79+ isย expected
h3. Actual Results
apache-tomcat 8.5.78 (or older) is used
h3. Workaround
At your own risk, you can manually upgrade Tomcat as instructed on this KB:
{}WARNING{}: Unless still reproducible on official releases, Atlassian Support may refuse support requests for Bamboo running over unofficial Tomcat versions.