The following Jenkins plugin updates have been released today to fix security vulnerabilities:
- Script Security Plugin 1.53
- Cloud Foundry Plugin 2.3.2
We recommend that administrators update Script Security Plugin as soon as possible.
Additionally we announce security fixes in these previously released plugin updates:
- Acunetix Plugin 1.1.0 (released 2018-10-24)
- Arxan MAM Publisher Plugin 2.0 (released 2018-11-14)
- ElectricFlow Plugin 1.1.5 (released 2018-12-19)
- JMS Messaging Plugin 1.1.2 (released 2019-02-11)
- Mattermost Notification Plugin 2.6.3 (released 2019-02-12)
- OctopusDeploy Plugin 1.9.0 (released 2018-11-05)
Please see the advisory for more information:
https://jenkins.io/security/advisory/2019-02-19/