RHBA-2023:3300 - Bug Fix Advisory

Topic

Release of Bug Advisories for the OpenShift Jenkins image and Jenkins agent base image

Description

Release of Bug Advisories for the OpenShift Jenkins image and Jenkins agent base image

Solution

Before applying this update, make sure all previously released errata
relevant to your system have been applied.

For details on how to apply this update, refer to:

https://access.redhat.com/articles/11258

Affected Products

• OpenShift Developer Tools and Services 4.12 x86_64
• OpenShift Developer Tools and Services 4.12 s390x
• OpenShift Developer Tools and Services 4.12 ppc64le
• OpenShift Developer Tools and Services 4.12 aarch64

Fixes

• OCPBUGS-10976 - Bump Jenkins to 2.387.1
• OCPBUGS-11348 - Mailer Plugin (mailer) has breaking changes in newest version

CVEs

• CVE-2022-4304
• CVE-2022-4450
• CVE-2022-23521
• CVE-2022-41854
• CVE-2022-41903
• CVE-2022-42889
• CVE-2022-47629
• CVE-2022-48303
• CVE-2023-0215
• CVE-2023-0286
• CVE-2023-0767
• CVE-2023-21930
• CVE-2023-21937
• CVE-2023-21938
• CVE-2023-21939
• CVE-2023-21954
• CVE-2023-21967
• CVE-2023-21968
• CVE-2023-23916
• CVE-2023-24422
• CVE-2023-25761
• CVE-2023-25762
• CVE-2023-27903
• CVE-2023-27904
• CVE-2023-28617

References

• https://docs.openshift.com/container-platform/4.12/cicd/jenkins/important-changes-to-openshift-jenkins-images.html