Status: Resolved (View Workflow)
Jenkins 2.332.3 (LTS)
we are getting CVE Errors on our Jenkins 2.332.3 (LTS) which i think they are already fixed in Version 1.5.1.
But unfortunately on Jenkins LTS the latest Version of the Plugin is 1.4.10.
The CVE Errors we are getting are:
SECURITY-2241 / CVE-2022-28138 (CSRF), CVE-2022-28139 (missing permission check)
What's the reason that the Plugin on the LTS Version of Jenkins will not be updated?