openshift / jenkins

Apache License 2.0
260 stars 446 forks source link

Upgrade Jenkins LTS Version to fulfill Jenkins Security Advisory 2023-03-08 #1661

Closed benissl closed 1 year ago

benissl commented 1 year ago

To fix the issues from Jenkins Security Advisory 2023-03-08, Jenkins needs to be upgraded to LTS 2.375.4 or 2.387.1.

In the master branch, the version is already set to 2.387.1 (commit) . Do you have any idea when it will be released to https://catalog.redhat.com/software/containers/openshift4/ose-jenkins/?

malsssh commented 1 year ago

https://nvd.nist.gov/vuln/detail/CVE-2023-27898 • Jenkins >= 2.394 • Jenkins LTS >= 2.375.4

coreydaley commented 1 year ago

Done.