The following Jenkins plugin updates contain fixes for security vulnerabilities:
* Azure AD Plugin 1.2.0
* Brakeman Plugin 0.13
* FitNesse Plugin 1.31
* Git Parameter Plugin 0.9.12
* Google Kubernetes Engine Plugin 0.8.1
* NUnit Plugin 0.26
* Pipeline GitHub Notify Step Plugin 1.0.5
* Pipeline: Groovy Plugin 2.79
* RadarGun Plugin 1.8
* S3 publisher Plugin 0.11.5
* Script Security Plugin 1.70
* Subversion Plugin 2.13.1
Additionally, we announce unresolved security issues in the following plugins:
* Applatix Plugin
* BMC Release Package and Deployment Plugin
* Debian Package Builder Plugin
* DigitalOcean Plugin
* Dynamic Extended Choice Parameter Plugin
* Eagle Tester Plugin
* ECX Copy Data Management Plugin
* Harvest SCM Plugin
* Parasoft Environment Manager Plugin
Please see the advisory for more information:
https://jenkins.io/security/advisory/2020-02-12/