Jenkins security advisory (AV24-556)

From: Canadian Centre for Cyber Security

Serial number: AV24-556
Date: October 2, 2024

On October 2, 2024, Jenkins published a security advisory to address vulnerabilities in the following products:

  • Jenkins weekly – version 2.478 and prior
  • Jenkins LTS – version 2.462.2 and prior
  • Credentials Plugin – version 1380.va_435002fa_924 and prior
  • OpenId Connect Authentication Plugin – version 4.354.v321ce67a_1de8 and prior

The Cyber Centre encourages users and administrators to review the provided web links and apply the necessary updates.

Report a problem on this page

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Please select all that apply:

Thank you for your help!

You will not receive a reply. For enquiries, please contact us.

Date modified: