Skip to main content

4.17.3 Release Notes

4.17.3 Release Notes

Name: "Basilisk violet glass" Release Date: November 13, 2023


This release addresses two CVE announcements for Rundeck/Process Automation:

  • CVE-2023-48222
    Authenticated users can view or delete jobs for which they do not have authorization.
  • CVE-2023-47112
    Authenticated users can view job names and groups for which they do not have read authorization.

Also includes other fixes for PagerDuty Process Automation (formerly Rundeck Enterprise), PagerDuty Runbook Automation and Rundeck Community included in this release.

Process Automation Updates

  • Fix: Error with authentication using assume-role if using EC2/ECS credential provider
  • Fix: ERROR 500 When creating ACL on Rundeck 4.16 + Postgres/Oracle

Also includes all Open Source updates from below

Rundeck Open Source Product Updates

Here is a link to the full list of public PRsopen in new window

Enterprise Runner Updates

Bundled Runner Version: 0.1.53

Community Contributors

Submit your own Pull Requests to get recognition here!

Staff Contributors