Versions Compared

Version Old Version 100 New Version 101
Changes made by

Karl Henselin

Karl Henselin

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.
Tip

Did you know you can subscribe to updates to security issues and release notes? Right click and copy this link and paste it into Outlook RSS Feeds or your feed reader of choice.

January 14, 2025

FLEXDEPLOY-13849 - The Jenkins plugin ships with a version of json-lib that is vulnerable to CVE-2024-47855. This CVE may show up in a vulnerability scan, but would not be relevant to FlexDeploy as it is we are not allowing user input or running it as a server. It will be resolved in a future version.

January 7, 2025

FLEXDEPLOY-13800 - The FSM plugin ships with async-http-client-2.12.3.jar which is vulnerable to CVE-2024-53990. This CVE may show up in a vulnerability scan, but would not be relevant to FlexDeploy as there would never be a second user. It will be resolved in a future version.

...