RELEASED: 2020-11-19
Based on Jenkins
LTS2.190.33-cb-1
Fixed release
Security advisory
Security advisory
-
CloudBees Security Advisory 2020-11-19
This advisory announces vulnerabilities in Jenkins, CloudBees Jenkins Distribution, CloudBees Jenkins Platform and CloudBees CI.
Security fixes
- Groups on items and nodes are ignored after the RBAC migration until the next restart (CTR-2757)
-
Groups were not available on items after the RBAC migration until the next restart. Customers either experienced a lack of permissions or an increase depending on the their permission configuration strategy (either adding more permissions in folders or to filter roles).
With this fix, groups are available on items without the need of a manual restart.