Skip to content

uaa/13.13

You can find the source of this version on GitHub at cloudfoundry/uaa-release. It was created based on the commit add2bc8b.

Release Notes

This is a security release addressing the following issues - CVE-2017-4974: Blind SQL Injection with privileged UAA endpoints (high severity)

Usage

You can reference this release in your deployment manifest from the releases section:

- name: "uaa"
  version: "13.13"
  url: "https://bosh.io/d/github.com/cloudfoundry/uaa-release?v=13.13"
  sha1: "992821e9d31337bb72f7253b705380194fd4a92b"

Or upload it to your director with the upload-release command:

bosh upload-release --sha1 992821e9d31337bb72f7253b705380194fd4a92b \
  https://bosh.io/d/github.com/cloudfoundry/uaa-release?v=13.13

Jobs

Packages