Skip to content

uaa/24.7

You can find the source of this version on GitHub at cloudfoundry/uaa-release. It was created based on the commit e740656c.

Release Notes

This is a security release addressing the following issues - CVE-2017-4972: Blind SQL Injection in UAA (high severity) - CVE-2017-4973: Privilege Escalation in UAA (high severity)

Usage

You can reference this release in your deployment manifest from the releases section:

- name: "uaa"
  version: "24.7"
  url: "https://bosh.io/d/github.com/cloudfoundry/uaa-release?v=24.7"
  sha1: "30dc0eaaecb9273c7376e420473d632e45db57c8"

Or upload it to your director with the upload-release command:

bosh upload-release --sha1 30dc0eaaecb9273c7376e420473d632e45db57c8 \
  "https://bosh.io/d/github.com/cloudfoundry/uaa-release?v=24.7"

Jobs

Packages