From jira at ovirt-jira.atlassian.net Fri Oct 13 09:38:14 2017
Content-Type: multipart/mixed; boundary="===============5019662884840672671=="
MIME-Version: 1.0
From: Evgheni Dereveanchin (oVirt JIRA) <jira at ovirt-jira.atlassian.net>
To: infra at ovirt.org
Subject: [JIRA] (OVIRT-1695) Apply fixes for Jenkins Security Advisory
 2017-10-11
Date: Fri, 13 Oct 2017 09:37:41 +0000
Message-ID: <JIRA.33221.1507887354000.fdbcee50-4be1-456e-bc28-52c0b65eca5b.1507887460284@Atlassian.JIRA>
In-Reply-To: JIRA.33221.1507887354000@Atlassian.JIRA

--===============5019662884840672671==
Content-Type: text/plain; charset="utf-8"
MIME-Version: 1.0
Content-Transfer-Encoding: quoted-printable

This is a multi-part message in MIME format...

------------=3D_1507887460-24272-243
Content-Type: text/plain; charset=3DUTF-8
Content-Transfer-Encoding: 7bit


     [ https://ovirt-jira.atlassian.net/browse/OVIRT-1695?page=3Dcom.atlass=
ian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Evgheni Dereveanchin reassigned OVIRT-1695:
-------------------------------------------

    Assignee: Evgheni Dereveanchin  (was: infra)

> Apply fixes for Jenkins Security Advisory 2017-10-11
> ----------------------------------------------------
>
>                 Key: OVIRT-1695
>                 URL: https://ovirt-jira.atlassian.net/browse/OVIRT-1695
>             Project: oVirt - virtualization made easy
>          Issue Type: Bug
>            Reporter: Evgheni Dereveanchin
>            Assignee: Evgheni Dereveanchin
>            Priority: High
>
> A new security advisory was published for Jenkins that uncovers several i=
ssues:
> https://jenkins.io/security/advisory/2017-10-11/
> To close the security gap, the following actions must be taken:
> * update Jenkins core to 2.73.2+
> * update Swarm Plugin to 3.5+



--
This message was sent by Atlassian Jira
(v1001.0.0-SNAPSHOT#100065)

------------=3D_1507887460-24272-243
Content-Type: text/html; charset=3D"UTF-8"
Content-Disposition: inline
Content-Transfer-Encoding: 7bit

<html><body>
<pre>[ https://ovirt-jira.atlassian.net/browse/OVIRT-1695?page=3Dcom.atlass=
ian.jira.plugin.system.issuetabpanels:all-tabpanel ]</pre>
<h3>Evgheni Dereveanchin reassigned OVIRT-1695:</h3>
<pre>Assignee: Evgheni Dereveanchin  (was: infra)</pre>
<blockquote><h3>Apply fixes for Jenkins Security Advisory 2017-10-11</h3>
<pre>     Key: OVIRT-1695
     URL: https://ovirt-jira.atlassian.net/browse/OVIRT-1695
 Project: oVirt - virtualization made easy
         Issue Type: Bug
Reporter: Evgheni Dereveanchin
Assignee: Evgheni Dereveanchin
Priority: High</pre>
<p>A new security advisory was published for Jenkins that uncovers several =
issues: <a href=3D"https://jenkins.io/security/advisory/2017-10-11/">https:=
//jenkins.io/security/advisory/2017-10-11/</a> To close the security gap, t=
he following actions must be taken:</p>
<ul><li><p>update Jenkins core to 2.73.2+</p></li>
<li><p>update Swarm Plugin to 3.5+</p></li></ul></blockquote>
<p>&mdash; This message was sent by Atlassian Jira (v1001.0.0-SNAPSHOT#1000=
65)</p>

<img src=3D"https://u4043402.ct.sendgrid.net/wf/open?upn=3Di5TMWGV99amJbNxJ=
pSp2-2BCmpYLyzYS3r1Q939T2sgz1AfUKgNv0OFQrauC9x52t-2BoyMsaKRzruP5bERVjk5rxeT=
-2FGw4whbYfvGqc-2B06RXVaUPQ-2F3nx0dJOppVA3zOC3js9USNlXPzGsN2qwLZyjG3uYBP4he=
Of2eU4VbMlSPn3DxB6bY0DX8xWsci-2BFFE8kUyfd59C6annhbZpKZd-2FEf75DfTcPVqcPdi8x=
XaT0vKsg-3D" alt=3D"" width=3D"1" height=3D"1" border=3D"0" style=3D"height=
:1px !important;width:1px !important;border-width:0 !important;margin-top:0=
 !important;margin-bottom:0 !important;margin-right:0 !important;margin-lef=
t:0 !important;padding-top:0 !important;padding-bottom:0 !important;padding=
-right:0 !important;padding-left:0 !important;"/>
</body></html>

------------=3D_1507887460-24272-243--

--===============5019662884840672671==
Content-Type: multipart/alternative
MIME-Version: 1.0
Content-Transfer-Encoding: base64
Content-Disposition: attachment; filename="attachment.bin"
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--===============5019662884840672671==--