Release 3.3.12

Name: "Onion ring springgreen piggy-bank"

• Download Rundeck
• Sign up for Release Notes
• Upgrade instructions

Package repositories have moved!

Please read the new instructions for downloading Rundeck from our new package repositories.

Overview

This small release updates package dependencies to enhance the security of Rundeck and addresses some cosmetic fixes.

Security Updates:

• Apache JDBC files updated to 9.0.44. Note: These files are not vulnerable. Updating helps reduce false positive findings in some security scans.
• Updated http-client 3.1 across multiple libraries. See CVE

Core Product Updates

• Add Style for Fixed Table and Word Breaks
• Fix stuck progress bar on oversized logs
• Initialize cmdDatavariable used in closure
• Update Tomcat JDBC lib to 9.0.44
• Fix: externally deleted job not reflected in scm import status
• Fix: "Duplicate to other project" option visibility
• Fix: Oracle saves empty fields as null and results in bug in comparison code
• Fix: /login/authAjax redirect loop for ajax requests
• Event resource ACLs at project level are not being honored
• Sec: Remove apache http-client 3.1
• Fixes arguments of method called to handle schedules from project config API
• Fix: use aclFileManager to read project ACLs for export

Here is a link to the full list of public PRs

Contributors

• Imad Jafir (imad6639)
• Greg Schueler (gschueler)
• Luis Toledo (ltamaster)
• Rodrigo Navarro (ronaveva)
• Carlos Eduardo (carlosrfranco)
• Miguel Ramos (mishingo)
• Stephen Joyner (sjrd218)
• Greg Zapp (ProTip)
• Christopher McCarroll-Gilbert (chrismcg14)
• Forrest Evans (fdevans)

Remember!!

For MySQL users: Starting with Rundeck 3.3.4 the MySQL JDBC driver is no longer be
bundled with the distributions. See the Upgrade Guide
for instructions to ensure your Rundeck installation can still connect to MySQL after upgrading.