Is Jenkins@2.332.2 and Jenkins@2.332.3 is supported/patched.
Please confirm.
I’m not sure precisely what you intend with the question that you’ve asked. Here are some alternatives that might be ways your question could be interpreted, along with the answer I’d give:
-
Are there any Jenkins core LTS versions newer than 2.332.3?
Yes, Jenkins 2.332.4, Jenkins 2.346.3, Jenkins 2.361.4, and Jenkins 2.375.1 are all newer than Jenkins 2.332.3.
-
Will Jenkins LTS 2.332.2 or Jenkins 2.332.3 be followed by any future releases in the 2.332.x LTS line?
No, there will not be any further releases of the Jenkins 2.332.x line. Jenkins 2.332.4 is the last release of the Jenkins 2.332.x LTS line.
-
Will the security vulnerabilities that affect Jenkins 2.332.2 and Jenkins 2.332.3 be fixed in a new release?
The cross-site scripting vulnerability in Jenkins 2.332.3 and Jenkins 2.332.2 is fixed in Jenkins 2.332.4. The HTTP/2 denial of service vulnerability in Jenkins 2.332.3 and Jenkins 2.332.2 is fixed in Jenkins 2.361.1
-
Will the Jenkins security team provide any further fixes for the Jenkins 2.332.x line?
No, the Jenkins security team will not provide any further fixes for the Jenkins 2.332.x line. The Jenkins security team provides security fixes for the most recent Jenkins weekly release and the most recent Jenkins LTS release. When a security fix is released for Jenkins core, users must upgrade to the most recent Jenkins weekly release or the most recent Jenkins LTS release to receive those fixes.
1 Like