Nimrod Stoler

Name of the Vulnerable Software and Affected Versions: snapd (affected versions not specified) Description: The issue arises when generating systemd service units for the docker snap and similar snaps, as snapd fails to specify Delegate=yes. As a result, systemd moves processes from containers created and managed by these snaps into the cgroup of the main daemon within the snap itself when reloading system units. This may grant additional privileges to a container within the snap that were not originally intended. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Jenkins versions 2.158 and earlier Jenkins LTS versions 2.150.1 and earlier Jenkins (affected versions not specified) in Redhat OpenShift Container Platform **Description** The issue is related to an improper authorization vulnerability that allows attackers to extend the duration of active HTTP sessions indefinitely. This could enable a remote attacker to reuse login credentials or session identifiers for authentication, even if the user account has been deleted. The vulnerability is associated with the `AuthenticationProcessingFilter2.java` file in the core component of Jenkins. **Recommendations** For Jenkins versions 2.158 and earlier, update to a version that includes the fix for this issue. For Jenkins LTS versions 2.150.1 and earlier, update to a newer LTS version that includes the fix. For Jenkins in Redhat OpenShift Container Platform, consider restricting access to the `AuthenticationProcessingFilter2.java` component until a patch is available. As a temporary workaround, consider disabling the reuse of session identifiers to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Jenkins versions 2.153 and earlier Jenkins LTS versions 2.138.3 and earlier **Description** A data modification issue exists that allows attackers to submit crafted user names, potentially causing an improper migration of user record storage formats. This could prevent the victim from logging into Jenkins. The issue is related to the `User.java` and `IdStrategy.java` files. **Recommendations** For Jenkins versions 2.153 and earlier, update to a version that fixes the improper migration of user record storage formats. For Jenkins LTS versions 2.138.3 and earlier, update to a version that fixes the improper migration of user record storage formats.

**Name of the Vulnerable Software and Affected Versions** Jenkins versions prior to 2.137 Jenkins versions prior to 2.121.2 **Description** A denial of service issue exists that allows attackers to create ephemeral in-memory user records by attempting to log in using invalid credentials, specifically affecting files BasicAuthenticationFilter.java and BasicHeaderApiTokenAuthenticator.java. **Recommendations** For versions prior to 2.137, update to a version that includes the fix for this issue. For versions prior to 2.121.2, update to a version that includes the fix for this issue.