The following Jenkins updates contain fixes for security vulnerabilities:
* Jenkins 2.416
* Jenkins LTS 2.401.3
The following Jenkins plugin updates contain fixes for security vulnerabilities:
* GitLab Authentication Plugin 1.18
* Gradle Plugin 2.8.1
* Qualys Web App Scanning Connector Plugin 2.0.11
* ServiceNow DevOps Plugin 1.38.1
Additionally, we announce unresolved security issues in the following plugins:
* Bazaar Plugin
* Chef Identity Plugin
Please see the advisory for more information:
https://www.jenkins.io/security/advisory/2023-07-26/