RHBA-2023:6174 - Bug Fix Advisory

Topic

Release of Bug Advisories for the OpenShift Jenkins and Jenkins agent base image

Description

OpenShift Jenkins Bug Advisories

Solution

Before applying this update, make sure all previously released errata
relevant to your system have been applied.

For details on how to apply this update, refer to:

https://access.redhat.com/articles/11258

Affected Products

• OpenShift Developer Tools and Services 4.12 x86_64
• OpenShift Developer Tools and Services 4.12 s390x
• OpenShift Developer Tools and Services 4.12 ppc64le
• OpenShift Developer Tools and Services 4.12 aarch64

Fixes

• OCPBUGS-13901 - [release-4.12] Bump Jenkins Plugins to latest version
• OCPBUGS-14113 - Update ImageStreams to use new Jenkins and Jenkins Agent Base images
• OCPBUGS-3692 - [release-4.12] Update OWNERS file to reflect current team members
• OCPBUGS-4833 - [release-4.12] openshift4/ose-jenkins:v4.10.0 run script throws too many arguments error
• OCPBUGS-7050 - Sync jenkins-version.txt, base-plugins.txt and bundle-plugins.txt from master branch
• OCPBUGS-8420 - Update Go to v1.18
• OCPBUGS-8497 - Jenkins images based on rhel8 are wrongly tagged with rhel7
• OCPTOOLS-246 - Bump Jenkins version to 2.414.3 [openshift-4.12]

CVEs

• CVE-2020-24736
• CVE-2022-40433
• CVE-2023-0800
• CVE-2023-0801
• CVE-2023-0802
• CVE-2023-0803
• CVE-2023-0804
• CVE-2023-1667
• CVE-2023-2283
• CVE-2023-2602
• CVE-2023-2603
• CVE-2023-3341
• CVE-2023-3899
• CVE-2023-4527
• CVE-2023-4806
• CVE-2023-4813
• CVE-2023-4911
• CVE-2023-22067
• CVE-2023-22081
• CVE-2023-27536
• CVE-2023-28321
• CVE-2023-28484
• CVE-2023-29469
• CVE-2023-29491
• CVE-2023-30630
• CVE-2023-32681
• CVE-2023-34969
• CVE-2023-38408
• CVE-2023-40217
• CVE-2023-44487

References

(none)