Is there any CVE fixed in sonarqube 9.9.6 versions

Must-share information (formatted with Markdown):

  • which versions are you using (SonarQube, Scanner, Plugin, and any relevant extension)
  • 9.9.4
  • how is SonarQube deployed: zip, Docker, Helm
  • helm
  • what are you trying to achieve
  • is there any CVEfixed in sonarqube 9.9.6 versions? if yes, please share the CVE details and date when it was fixed
  • what have you tried so far to achieve this

Do not share screenshots of logs – share the text itself (bonus points for being well-formatted)!

Hi,

Welcome to the community!

Here are the release notes for the two point versions you’re missing. Our policy is to update release notes with security fix details 90d after a release. We’ve fallen down on that a bit, but reminders have been sent internally, so hopefully this data will show up soon.

 
Ann

Hi Ann,

Thank You for your response!
Please if you can ask for someone to update the details it will be really helpful.
Appreciate all the help!

Thanks,
Mohit Saraf

Hi Mohit,

I already did.

 
:slight_smile:
Ann