RELEASED: Public: 2018-05-16
Based on Jenkins
LTS2.107.3-cb-1
Rolling release[.badge .badge-pill .ml-1 .badge-warning]Security release
Security advisory
Security advisory * Security Advisory 2018-05-09
+ Fixes the security issues described in the advisory.
Verified plugins
-
Async Http Client
1.7.24.1 verified installed by default
-
Authentication Tokens API Plugin
1.3 verified optional
-
CloudBees Jenkins Advisor Plugin
2.0 verified optional
-
Config File Provider Plugin
2.17 verified optional
-
Credentials Binding Plugin
1.15 verified optional
-
Credentials Plugin
2.1.16 verified installed by default
-
Display URL API
2.2.0 verified installed by default
-
Folders Plugin
6.4 verified installed by default
-
JUnit Plugin
1.24 verified installed by default
-
Jackson 2 API Plugin
2.8.11.1 verified installed by default
-
Javadoc Plugin
1.4 verified optional
-
Jenkins Mailer Plugin
1.21 verified installed by default
-
Jenkins SSH Slaves plugin
1.26 verified optional
-
LDAP Plugin
1.20 verified optional
-
MapDB API Plugin
1.0.9.0 verified installed by default
-
Metrics Plugin
3.1.2.11 verified installed by default
-
OWASP Markup Formatter Plugin
1.5 verified optional
-
Plain Credentials Plugin
1.4 verified optional
-
SAML Plugin
1.0.4 verified optional
-
SCM API Plugin
2.2.6 verified installed by default
-
SSH Credentials Plugin
1.13 verified optional
-
Script Security Plugin
1.44 verified installed by default
-
Secure Requester Whitelist Plugin
1.2 verified optional
-
Structs Plugin
1.14 verified installed by default
-
Token Macro Plugin
2.4 verified installed by default
-
Variant Plugin
1.1 verified installed by default
Proprietary plugins
-
Beekeeper Upgrade Assistant Plugin
2.107.0.1 proprietary installed by default
-
CloudBees Back-up Plugin
3.38.1 proprietary optional
-
CloudBees Folders Plus Plugin
3.4 proprietary installed by default
-
CloudBees High Availability Management plugin
4.15 proprietary installed by default
-
CloudBees Jenkins Enterprise License Entitlement Check
8.10 proprietary installed by default
-
CloudBees License Manager
9.24 proprietary installed by default
-
CloudBees Monitoring Plugin
2.7 proprietary installed by default
-
CloudBees Nodes Plus Plugin
1.16 proprietary optional
-
CloudBees Plugin Usage Plugin
1.7 proprietary optional
-
CloudBees Quiet Start Plugin
1.4 proprietary optional
-
CloudBees Restart Aborted Builds Plugin
1.10 proprietary optional
-
CloudBees Role-Based Access Control Plugin
5.20 proprietary optional
-
CloudBees SSH Build Agents Plugin
2.1 proprietary optional
-
CloudBees Skip Next Build Plugin
4.1 proprietary optional
-
CloudBees Support Plugin
3.18 proprietary installed by default
-
CloudBees Update Center Data API
4.41 proprietary installed by default
-
CloudBees Update Center Plugin
4.42 proprietary optional
-
CloudBees VMWare Autoscaling Plugin
4.3.7 proprietary optional
-
CloudBees WikiText Security Plugin
3.8 proprietary optional
-
Operations Center Agent
2.107.1.4 proprietary installed by default
-
Operations Center Analytics
2.107.1.5 proprietary optional
-
Operations Center Analytics Configuration
2.107.1.5 proprietary optional
-
Operations Center Analytics Feeder
2.107.1.5 proprietary optional
-
Operations Center Analytics Kibana Dashboards
2.107.1.5 proprietary optional
-
Operations Center Analytics Reporter
2.107.1.5 proprietary optional
-
Operations Center Analytics Viewer
2.107.1.5 proprietary optional
-
Operations Center Context
2.107.1.6 proprietary installed by default
-
Operations Center Elasticsearch Provider
2.107.1.4 proprietary optional
-
Operations Center Embedded elasticsearch
2.73.0.1 proprietary optional
-
Operations Center JNLP Agent Controller Plugin
2.107.1.5 proprietary optional
-
Operations Center Monitoring Plugin
2.107.1.4 proprietary optional
-
Operations Center Server Cluster Operations
2.107.1.5 proprietary optional
-
Operations Center Server EC2 Cloud
2.107.1.4 proprietary optional
-
Operations Center Server License Entitlement Check
2.107.1.4 proprietary installed by default
-
Operations Center Server Plugin
2.107.1.6 proprietary installed by default
-
Operations Center Server Role Based Access Control
2.107.1.4 proprietary optional
-
Operations Center Single Sign-On Plugin
2.107.1.4 proprietary optional
-
Operations Center Update Center Plugin
2.107.1.4 proprietary optional
Compatible plugins
-
Amazon EC2 plugin
1.36.1-cb-2 compatible optional
-
Amazon Web Services SDK
1.11.264 compatible optional
-
CloudBees Amazon Web Services Credentials Plugin
1.21 compatible optional
-
Command Agent Launcher Plugin
1.2 compatible installed by default
-
Durable Task Plugin
1.22 compatible optional
-
Email Extension Plugin
2.62 compatible optional
-
Jenkins Active Directory plugin
2.6 compatible optional
-
Jenkins Apache HttpComponents Client 4.x API Plugin
4.5.3-2.1 compatible optional
-
Jenkins JSch dependency plugin
0.1.54.2 compatible optional
-
Matrix Authorization Strategy Plugin
2.2 compatible optional
-
Matrix Project Plugin
1.12 compatible optional
-
Maven Integration plugin
3.1.2 compatible optional
-
Node Iterator API Plugin
1.5.0 compatible installed by default
-
PAM Authentication plugin
1.3 compatible optional
-
Pipeline: API
2.27 compatible installed by default
-
Pipeline: Step API
2.14 compatible installed by default
-
SSH Agent Plugin
1.15 compatible optional
-
Stack Trace Suppression Plugin
1.5 compatible optional
-
Support Core Plugin
2.44 compatible installed by default
-
Unique ID Library Plugin
2.1.3 compatible optional
-
bouncycastle API Plugin
2.16.2 compatible installed by default
Plugin modifications
-
Upgraded Jenkins LTS from
2.107.2-cb-1
to2.107.3-cb-1
Upgraded Amazon Web Services SDK library from 1.11.119
to 1.11.264
-
Upgraded CloudBees Assurance Plugin from
2.89.0.3
to2.107.0.1
-
Provides information about Security Upgrades and how to manage them when CAP is enabled. Once a security warning is published and detected by CB Jenkins Solution, a security warning advisory will appear in top of the home page menu. From this point it’s possible to navigate to the Beekeeper Upgrade Assistant, where extra information is available under the Security Warnings option.
-
A Plugin Catalog can be installed on masters to extend Beekeeper, allowing to specify which versions of non-CAP plugins will be available. In case the versions recommended by the Plugin Catalog and the installed one differ, a warning will be displayed into the Beekeeper Upgrade Assistant.
Upgraded cloudbees-ha from 4.14
to 4.15
-
Upgraded CloudBees License Manager from
9.20
to9.24
-
Upgraded CloudBees Support Plugin from
3.17
to3.18
-
Upgraded CloudBees Update Center Plugin from
4.29
to4.42
-
Upgraded Display URL API Plugin from
2.1.0
to2.2.0
-
Upgraded Durable Task Plugin from
1.16
to1.22
-
Upgraded Email-ext Plugin from
2.61
to2.62
-
Upgraded JSch Plugin from
0.1.54.1
to0.1.54.2
-
Upgraded JUnit Plugin from
1.23
to1.24
-
Upgraded Maven Plugin from
3.1
to3.1.2
-
Upgraded CloudBees Jenkins Enterprise License Entitlement Check from
8.9
to8.10
-
Upgraded CloudBees Role-Based Access Control Plugin from
5.19
to5.20
-
Upgraded Operations Center Analytics Plugin from
2.107.1.4
to2.107.1.5
-
Upgraded Operations Center Analytics Configuration from
2.107.1.4
to2.107.1.5
-
Upgraded Operations Center Analytics Dashboards from
2.107.1.4
to2.107.1.5
-
Upgraded Operations Center Analytics Feeder from
2.107.1.4
to2.107.1.5
-
Upgraded Operations Center Analytics Reporter Plugin from
2.107.1.4
to2.107.1.5
-
Upgraded Operations Center Analytics Viewer Plugin from
2.107.1.4
to2.107.1.5
-
Upgraded Operations Center Context Plugin from
2.107.1.4
to2.107.1.6
-
Upgraded Operations Center Server Plugin from
2.107.1.4
to2.107.1.6
-
Upgraded Script Security Plugin from
1.41
to1.44
-
Upgraded Token Macro Plugin from
2.1
to2.4
-
Upgraded Pipeline API Plugin from
2.26
to2.27
-
Added CloudBees Update Center Data API Plugin version
4.41
Removed Monitoring Plugin