uaa/30
You can find the source of this version on GitHub at cloudfoundry/uaa-release. It was created based on the commit 77f8dc94.
Release Notes¶
This is a security release addressing the following issues - CVE-2017-4972: Blind SQL Injection in UAA (high severity) - CVE-2017-4973: Privilege Escalation in UAA (high severity)
Usage¶
You can reference this release in your deployment manifest from the releases section:
- name: "uaa" version: "30" url: "https://bosh.io/d/github.com/cloudfoundry/uaa-release?v=30" sha1: "90b034c0d9a8282a47d0409e561ffb1b9abf626b"
Or upload it to your director with the upload-release command:
bosh upload-release --sha1 90b034c0d9a8282a47d0409e561ffb1b9abf626b \ "https://bosh.io/d/github.com/cloudfoundry/uaa-release?v=30"