From e570d12fba50939e54a66f93c50143cb7644fce0 Mon Sep 17 00:00:00 2001 From: Carlos Tadeu Panato Junior Date: Mon, 6 May 2024 16:35:25 +0200 Subject: [PATCH] Adv jenkins 2.456 r1 (#4543) * Adding Advisory GHSA-2g4q-9vm9-9fw4 for jenkins * Adding Advisory GHSA-4h8f-2wvx-gg5w for jenkins * Adding Advisory GHSA-v63g-v339-2673 for jenkins --------- Co-authored-by: octo-sts[bot] <157150467+octo-sts@users.noreply.github.com> --- jenkins.advisories.yaml | 51 +++++++++++++++++++++++++++++++++++++++++ 1 file changed, 51 insertions(+) diff --git a/jenkins.advisories.yaml b/jenkins.advisories.yaml index 148f81e41..4d292e75b 100644 --- a/jenkins.advisories.yaml +++ b/jenkins.advisories.yaml @@ -220,6 +220,57 @@ advisories: data: fixed-version: 2.447-r0 + - id: CVE-2024-34144 + aliases: + - GHSA-v63g-v339-2673 + events: + - timestamp: 2024-05-04T09:32:36Z + type: detection + data: + type: scan/v1 + data: + subpackageName: jenkins + componentID: 5154c47a4a9c023f + componentName: script-security + componentVersion: 1335.vf07d9ce377a_e + componentType: jenkins-plugin + componentLocation: /usr/share/java/jenkins/jenkins.war + scanner: grype + + - id: CVE-2024-34145 + aliases: + - GHSA-2g4q-9vm9-9fw4 + events: + - timestamp: 2024-05-04T09:32:31Z + type: detection + data: + type: scan/v1 + data: + subpackageName: jenkins + componentID: 5154c47a4a9c023f + componentName: script-security + componentVersion: 1335.vf07d9ce377a_e + componentType: jenkins-plugin + componentLocation: /usr/share/java/jenkins/jenkins.war + scanner: grype + + - id: CVE-2024-34447 + aliases: + - GHSA-4h8f-2wvx-gg5w + events: + - timestamp: 2024-05-04T09:32:34Z + type: detection + data: + type: scan/v1 + data: + subpackageName: jenkins + componentID: 7dffb917a32cce3d + componentName: bcprov-jdk18on + componentVersion: "1.77" + componentType: java-archive + componentLocation: /usr/share/java/jenkins/jenkins.war + scanner: grype + - id: GHSA-58qw-p7qm-5rvh events: - timestamp: 2023-08-14T12:56:28Z