CVE-2015-6576 Atlassian Bamboo Java Deserialization Code Execution Vulnerability.

Bamboo is a continuous integration and deployment tool that ties automated builds, tests and releases together in a single workflow.

Bamboo had a resource that deserialised arbitrary user input without restriction. Attackers can use this vulnerability to execute Java code of their choice on systems that have a vulnerable version of Bamboo.

Affected Versions
Version prior to 5.8.5 from 2.2 And version prior to 5.9.7 from 5.9.0

Attackers can use this vulnerability to execute Java code of their choice on systems that have a vulnerable version of Bamboo.

Vendor has released fix to address this vulnerability. Download it from here.

Patch:
Following are links for downloading patches to fix the vulnerabilities:

BAM-16439