The Jenkins project will publish a security advisory for Jenkins plugins on Tuesday, December 17. The highest severity is 'High'. The most popular included plugin has between 10,000 and 25,000 reported installations. The advisory includes issues that will be published without a fix as outlined at https://jenkins.io/security/#vulnerabilities-in-plugins
This affects only Jenkins plugins, there will be no corresponding security update for Jenkins itself. -- You received this message because you are subscribed to the Google Groups "Jenkins Advisories" group. To unsubscribe from this group and stop receiving emails from it, send an email to jenkinsci-advisories+unsubscr...@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/jenkinsci-advisories/6C3018A6-DB59-4EA4-8292-22372B9962A2%40beckweb.net.