Jenkins Security Advisories

This advisory announces multiple vulnerabilities in Jenkins, CloudBees Jenkins Platform and CloudBees Jenkins Solutions.

This advisory announces multiple vulnerabilities in Jenkins, CloudBees Jenkins Platform and CloudBees Jenkins Solutions.

This advisory announces multiple vulnerabilities in Jenkins, CloudBees Jenkins Platform and CloudBees Jenkins Solutions.

This advisory announces multiple vulnerabilities in Jenkins, CloudBees Jenkins Platform and CloudBees Jenkins Solutions.

This advisory announces multiple vulnerabilities in Jenkins, CloudBees Jenkins Platform and CloudBees Jenkins Solutions.

This advisory announces multiple vulnerabilities in Jenkins, CloudBees Jenkins Platform and CloudBees Jenkins Solutions.

This advisory announces multiple vulnerabilities in Jenkins, CloudBees Jenkins Platform and CloudBees Jenkins Solutions.

This advisory announces multiple vulnerabilities in Jenkins, CloudBees Jenkins Platform and CloudBees Jenkins Solutions.

This advisory announces multiple vulnerabilities in Jenkins, CloudBees Jenkins Platform and CloudBees Jenkins Solutions.

This advisory announces multiple vulnerabilities in Jenkins, CloudBees Jenkins Platform and CloudBees Jenkins Solutions.

This advisory announces multiple vulnerabilities in Jenkins, CloudBees Jenkins Platform and CloudBees Jenkins Solutions.

This advisory announces multiple vulnerabilities in Jenkins, CloudBees Jenkins Platform and CloudBees Jenkins Solutions.

 

This advisory announces multiple vulnerabilities in Jenkins, CloudBees Jenkins Platform and CloudBees Jenkins Solutions.

This advisory announces vulnerabilities in these Jenkins plugins:

This advisory announces vulnerabilities in these Jenkins plugins:

The information on this page is current as of February 1, 2018.

CloudBees Security Advisory 2018-01-04 is published in regards to CVE-2017-5715, CVE-2017-5753 and CVE-2017-5754 - also known as Spectre/Meltdown. This is an atypical security advisory based on an...

This advisory announces two vulnerabilities in Jenkins, CloudBees Jenkins Platform and CloudBees Jenkins Solutions.

 

This advisory announces a vulnerability in the Script Security Jenkins plugin

This advisory announces a vulnerability in the EC2 plugin.

This advisory announces multiple vulnerabilities in Jenkins, CloudBees Jenkins Platform and CloudBees Jenkins Solutions.

This advisory announces vulnerabilities in these Jenkins plugins:

 

This advisory announces multiple vulnerabilities in Jenkins, CloudBees Jenkins Platform and CloudBees Jenkins Solutions.

This advisory announces vulnerabilities in these Jenkins plugins:

This advisory announces multiple vulnerabilities in Jenkins, CloudBees Jenkins Platform, CloudBees Jenkins Solutions, and these plugins:

This advisory announces multiple vulnerabilities in Jenkins, CloudBees Jenkins Platform, and CloudBees Jenkins Solutions.

This advisory announces vulnerabilities and security-related changes in these Jenkins plugins that are part of the CloudBees Jenkins Solution:

  • CloudBees Role-Based Access Control
  • Email Extension (Email-ext)
  • Matrix Authorization Strategy

The Jenkins...

This advisory announces vulnerabilities in these Jenkins plugins:

  •     Active Directory
  •     DistFork
  •     Email Extension (Email-ext)
  •     Mailer
  •     Pipeline: Classpath Step
  •     SSH Slaves

This advisory announces multiple vulnerabilities in Jenkins and CloudBees Jenkins Platform.

These vulnerabilities affect the following components:

  • CloudBees Jenkins Operations Center
  • CloudBees Jenkins Enterprise
  • DEV@cloud
  • ...

This advisory announces the fix for a previously disclosed zero-day vulnerability in Jenkins.

This advisory announces a vulnerability in the CloudBees Template Plugin.

 

This advisory announces vulnerabilities in these Jenkins plugins:

  • Async Http Client Plugin
  • Build Failure Analyzer Plugin
  • Image Gallery Plugin
  • TAP Plugin

Revised 2016-05-12: Added CJP-4586​

This advisory announces multiple vulnerabilities in Jenkins, and a vulnerability in CloudBees Operations Center Context Plugin.

 

This advisory announces multiple vulnerabilities in these Jenkins plugins:

This advisory announces multiple vulnerabilities in Jenkins.

This advisory announces multiple vulnerabilities in Jenkins.

This advisory announces multiple vulnerabilities in Jenkins.

This security advisory involves the Jenkins CLI.

SECURITY 218

This advisory announces a security advisory in Jenkins core.

This advisory announces:

This advisory announces a security vulnerability/hardening (CVE-2014-3665) in Jenkins core.

This advisory announces:

  • multiple security vulnerabilities that were found in Jenkins core.
  • two security vulnerabilities found in the monitoring plugin

Affected Versions:

  • All the
  • ...

This advisory announces multiple security vulnerabilities that were found in Jenkins Enterprise by CloudBees plugins.

This advisory announces multiple security vulnerabilities that were found in Jenkins core.

This advisory announces multiple security vulnerabilities that were found in Jenkins core.

This advisory announces multiple security vulnerabilities that were found in Jenkins core.

This advisory announces a security vulnerability that was found in the Jenkins core.

This advisory announces two security vulnerabilities that were found in Jenkins core.

This advisory announces security vulnerabilities that were found in Jenkins core and several plugins.

This advisory announces a couple of critical security vulnerabilities that were found in Jenkins core.